Vulnerability Description
Semantically-Interconnected Online Communities (SIOC) 5.x before 5.x-1.2 and 6.x before 6.x-1.1, a module for Drupal, does not properly implement menu and database APIs, which allows remote attackers to obtain usernames and read hashed emails and comments via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Drupal | Semantically Interconnected Online Communities | <= 5.x_1.0 |
Related Weaknesses (CWE)
References
- http://drupal.org/node/318749PatchVendor Advisory
- http://secunia.com/advisories/32191Vendor Advisory
- http://www.securityfocus.com/bid/31658
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45762
- http://drupal.org/node/318749PatchVendor Advisory
- http://secunia.com/advisories/32191Vendor Advisory
- http://www.securityfocus.com/bid/31658
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45762
FAQ
What is CVE-2008-6160?
CVE-2008-6160 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Semantically-Interconnected Online Communities (SIOC) 5.x before 5.x-1.2 and 6.x before 6.x-1.1, a module for Drupal, does not properly implement menu and database APIs, which allows remote attackers ...
How severe is CVE-2008-6160?
CVE-2008-6160 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-6160?
Check the references section above for vendor advisories and patch information. Affected products include: Drupal Semantically Interconnected Online Communities.