CVE-2010-5277

EUVD-2010-5236
Unspecified vulnerability in the Views Bulk Operations module 6 before 6.x-1.10 for Drupal allows remote authenticated users with user management permissions to bypass intended access restrictions and delete anonymous users (user 0) via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.9 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:N/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 47%
Affected Products (NVD)
VendorProductVersion
karim_ratibviews_bulk_operations
6.x-1.0:x
karim_ratibviews_bulk_operations
6.x-1.1:x
karim_ratibviews_bulk_operations
6.x-1.2:x
karim_ratibviews_bulk_operations
6.x-1.3:x
karim_ratibviews_bulk_operations
6.x-1.4:x
karim_ratibviews_bulk_operations
6.x-1.5:x
karim_ratibviews_bulk_operations
6.x-1.6:x
karim_ratibviews_bulk_operations
6.x-1.7:x
karim_ratibviews_bulk_operations
6.x-1.8:x
karim_ratibviews_bulk_operations
6.x-1.9:x
𝑥
= Vulnerable software versions
References
http://drupal.org/node/933596
http://drupal.org/node/933960
http://secunia.com/advisories/41696
http://www.securityfocus.com/bid/43813
https://exchange.xforce.ibmcloud.com/vulnerabilities/62316
http://drupal.org/node/933596
http://drupal.org/node/933960
http://secunia.com/advisories/41696
http://www.securityfocus.com/bid/43813
https://exchange.xforce.ibmcloud.com/vulnerabilities/62316