Vulnerability Details CVE-2014-5250
Unspecified vulnerability in the AJAX autocompletion callback in the Biblio Autocomplete module 6.x-1.x before 6.x-1.1 and 7.x-1.x before 7.x-1.5 for Drupal allows remote attackers to access data via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.3%
CVSS Severity
CVSS v2 Score 7.5
References
Products affected by CVE-2014-5250
-
cpe:2.3:a:biblio_autocomplete_project:biblio_autocomplete:6.x-1.0
-
cpe:2.3:a:biblio_autocomplete_project:biblio_autocomplete:6.x-1.x
-
cpe:2.3:a:biblio_autocomplete_project:biblio_autocomplete:7.x-1.0
-
cpe:2.3:a:biblio_autocomplete_project:biblio_autocomplete:7.x-1.1
-
cpe:2.3:a:biblio_autocomplete_project:biblio_autocomplete:7.x-1.2
-
cpe:2.3:a:biblio_autocomplete_project:biblio_autocomplete:7.x-1.3
-
cpe:2.3:a:biblio_autocomplete_project:biblio_autocomplete:7.x-1.4
-
cpe:2.3:a:biblio_autocomplete_project:biblio_autocomplete:7.x-1.x