CVE-2013-0318

EUVD-2013-0336
The admin page in the Banckle Chat module for Drupal does not properly restrict access, which allows remote attackers to bypass intended restrictions via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 80%
Affected Products (NVD)
VendorProductVersion
banckle_chat_projectbanckle_chat
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://drupal.org/node/1916370
http://www.openwall.com/lists/oss-security/2013/02/21/5
http://drupal.org/node/1916370
http://www.openwall.com/lists/oss-security/2013/02/21/5