CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-3391

The Path Breadcrumbs module before 7.x-3.2 for Drupal allows remote attackers to bypass intended access restrictions and obtain sensitive node titles by reading a 403 Not Found page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.5%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.openwall.com/lists/oss-security/2015/02/05/16
http://www.securityfocus.com/bid/72569
https://exchange.xforce.ibmcloud.com/vulnerabilities/100672
https://www.drupal.org/node/2420121
https://www.drupal.org/node/2420139
http://www.openwall.com/lists/oss-security/2015/02/05/16
http://www.securityfocus.com/bid/72569
https://exchange.xforce.ibmcloud.com/vulnerabilities/100672
https://www.drupal.org/node/2420121
https://www.drupal.org/node/2420139

Products affected by CVE-2015-3391

Path Breadcrumbs Project » Path Breadcrumbs » Version: 7.x-3.0

cpe:2.3:a:path_breadcrumbs_project:path_breadcrumbs:7.x-3.0
Path Breadcrumbs Project » Path Breadcrumbs » Version: 7.x-3.1

cpe:2.3:a:path_breadcrumbs_project:path_breadcrumbs:7.x-3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-3391

Products

Pricing

Contact Us