CVE-2010-2352

Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 21/06/2010 Updated: 17/08/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

The Node Reference module in Content Construction Kit (CCK) module 5.x prior to 5.x-1.11 and 6.x prior to 6.x-2.7 for Drupal does not perform access checks before displaying referenced nodes, which allows remote malicious users to read controlled nodes.

Vulnerable Product	Search on Vulmon	Subscribe to Product
yves_chedemois cck 5.x-1.9
yves_chedemois cck 5.x-1.8
karen_stevenson cck 5.x-1.2
karen_stevenson cck 5.x-1.1
karen_stevenson cck 6.x-2.0
karen_stevenson cck 5.x-1.7
yves_chedemois cck 5.x-1.6-1
karen_stevenson cck 6.x-2.6
karen_stevenson cck 6.x-2.5
karen_stevenson cck 5.x-1.x
yves_chedemois cck 5.x-1.10
karen_stevenson cck 5.x-1.0
yves_chedemois cck 5.x-1.4
karen_stevenson cck 5.x-1.3
karen_stevenson cck 6.x-2.2
karen_stevenson cck 6.x-2.1
yves_chedemois cck 5.x-1.6
yves_chedemois cck 5.x-1.5
karen_stevenson cck 6.x-2.4
karen_stevenson cck 6.x-2.3

CWE-20 http://drupal.org/node/829566 http://secunia.com/advisories/40243 http://osvdb.org/65615 http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043100.html http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043172.html http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043191.html http://www.vupen.com/english/advisories/2010/1546 http://secunia.com/advisories/40318 https://exchange.xforce.ibmcloud.com/vulnerabilities/59515 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2010-2352

Vulnerability Summary

References

Vulmon Search

About

Products

Connect