CyberSec.Space Logo
CVEブラウザに戻る

CVE-2007-1033

HIGH
7.5
CVSS Severity Score
EPSS Score0.1270%
EPSS Percentile0.63th
Published2007年2月21日
Last Modified2026年4月23日

Vulnerability Description

Unspecified vulnerability in the Secure site 4.7.x-1.x-dev and 5.x-1.x-dev module for Drupal allows remote attackers to bypass access restrictions via a crafted URL.

Affected Platforms (CPE)

📦
Drupal

Secure Site Module

= 4.7
📦
Drupal

Secure Site Module

= 5.0

References & Advisories

🔗 http://drupal.org/node/119619
🔗 http://osvdb.org/35160
🔗 http://www.vupen.com/english/advisories/2007/0637
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/32538
🔗 http://drupal.org/node/119619
🔗 http://osvdb.org/35160
🔗 http://www.vupen.com/english/advisories/2007/0637
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/32538

関連する脆弱性情報

CVE-2008-056810.0

Unspecified vulnerability in the IP-authentication feature in the Secure Site 5.x-1.0 and 4.7.x-1.0 module for Drupal allows remot...

CVE-2013-42278.8

Cross-site request forgery (CSRF) vulnerability in the persona_xsrf_token function in persona.module in the Mozilla Persona module...

CVE-2021-324038.8

Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) due to lack of security mechanisms for ...

CVE-2014-23617.2

OleumTech WIO DH2 Wireless Gateway and Sensor Wireless I/O Modules, when BreeZ is used, do not require authentication for reading ...