SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Paid content will be excluded from the download.

Download | Alert*

CVE

CVE-2015-6661

Date: (C)2015-08-26 (M)2023-12-22

Drupal 6.x before 6.37 and 7.x before 7.39 allows remote attackers to obtain sensitive node titles by reading the menu.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9

CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: NONE
Availability: NONE

Reference:

SECTRACK-1033358

FEDORA-2015-13915

FEDORA-2015-13916

FEDORA-2015-13917

FEDORA-2015-14442

FEDORA-2015-14443

FEDORA-2015-14444

https://www.drupal.org/SA-CORE-2015-003

cpe:/a:drupal:drupal:7.33
cpe:/a:drupal:drupal:6.1
cpe:/a:drupal:drupal:7.34
cpe:/a:drupal:drupal:7.0:alpha7
...

oval:org.secpod.oval:def:602214
oval:org.secpod.oval:def:109490
oval:org.secpod.oval:def:109496
oval:org.secpod.oval:def:109498
...

© SecPod Technologies