CVE-2008-6160

Semantically-Interconnected Online Communities (SIOC) 5.x before 5.x-1.2 and 6.x before 6.x-1.1, a module for Drupal, does not properly implement menu and database APIs, which allows remote attackers to obtain usernames and read hashed emails and comments via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 61%
VendorProductVersion
drupalsemantically_interconnected_online_communities
𝑥
≤ 5.x_1.0
drupalsemantically_interconnected_online_communities
𝑥
≤ 6.x_1.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://drupal.org/node/318749
http://secunia.com/advisories/32191
http://www.securityfocus.com/bid/31658
https://exchange.xforce.ibmcloud.com/vulnerabilities/45762
http://drupal.org/node/318749
http://secunia.com/advisories/32191
http://www.securityfocus.com/bid/31658
https://exchange.xforce.ibmcloud.com/vulnerabilities/45762