Privilege Escalation Vulnerability in EveryBlog for Drupal
CVE-2008-6136

Currently unrated

Key Information:

Vendor: Drupal
Status: Everyblog
Vendor: CVE Published:; 14 February 2009

Summary

An unspecified vulnerability in EveryBlog versions 5.x and 6.x, a module for Drupal, allows remote attackers to exploit unknown attack vectors. This may enable them to gain unauthorized privileges as another user or even as an administrator within the affected environment, potentially compromising the integrity and confidentiality of the application.

References

http://www.securityfocus.com/bid/31656

vdb-entryx_refsource_BID

http://secunia.com/advisories/32194

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/45760

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Feb 14, 2009
Vulnerability Reserved
Feb 13, 2009