CVE-2008-4791

The user module in Drupal 5.x before 5.11 and 6.x before 6.5 might allow remote authenticated users to bypass intended login access rules and successfully login via unknown vectors.
References
Link Resource
http://www.openwall.com/lists/oss-security/2008/10/21/7 Mailing List Third Party Advisory
http://drupal.org/node/318706 Patch Vendor Advisory
http://secunia.com/advisories/32201 Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/45766 Third Party Advisory VDB Entry
Configurations

Configuration 1

cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*
cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*

Information

Published : 2008-10-29 03:31

Updated : 2018-11-02 01:07


NVD link : CVE-2008-4791

Mitre link : CVE-2008-4791

Products Affected
No products.
CWE