CyberSec.Space Logo
返回 CVE 浏览器

CVE-2008-0568

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0940%
EPSS Percentile24.56th
Published2008年2月5日
Last Modified2026年4月23日

Vulnerability Description

Unspecified vulnerability in the IP-authentication feature in the Secure Site 5.x-1.0 and 4.7.x-1.0 module for Drupal allows remote attackers to gain the privileges of a user who has authenticated from behind the same proxy server as the attacker.

Affected Platforms (CPE)

📦
Drupal

Secure Site Module

= 4.7
📦
Drupal

Secure Site Module

= 5.0

References & Advisories

🔗 http://drupal.org/node/216019
🔗 http://secunia.com/advisories/28732
🔗 http://www.securityfocus.com/bid/27543
🔗 http://www.vupen.com/english/advisories/2008/0377/references
🔗 http://drupal.org/node/216019
🔗 http://secunia.com/advisories/28732
🔗 http://www.securityfocus.com/bid/27543
🔗 http://www.vupen.com/english/advisories/2008/0377/references

相关漏洞威胁

CVE-2013-42278.8

Cross-site request forgery (CSRF) vulnerability in the persona_xsrf_token function in persona.module in the Mozilla Persona module...

CVE-2021-324038.8

Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) due to lack of security mechanisms for ...

CVE-2007-10337.5

Unspecified vulnerability in the Secure site 4.7.x-1.x-dev and 5.x-1.x-dev module for Drupal allows remote attackers to bypass acc...

CVE-2014-23617.2

OleumTech WIO DH2 Wireless Gateway and Sensor Wireless I/O Modules, when BreeZ is used, do not require authentication for reading ...