Vulnerability Description
Unspecified vulnerability in the Views Bulk Operations module 6 before 6.x-1.10 for Drupal allows remote authenticated users with user management permissions to bypass intended access restrictions and delete anonymous users (user 0) via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Karim Ratib | Views Bulk Operations | 6.x-1.0 |
| Drupal | Drupal | - |
References
- http://drupal.org/node/933596Patch
- http://drupal.org/node/933960PatchVendor Advisory
- http://secunia.com/advisories/41696Vendor Advisory
- http://www.securityfocus.com/bid/43813
- https://exchange.xforce.ibmcloud.com/vulnerabilities/62316
- http://drupal.org/node/933596Patch
- http://drupal.org/node/933960PatchVendor Advisory
- http://secunia.com/advisories/41696Vendor Advisory
- http://www.securityfocus.com/bid/43813
- https://exchange.xforce.ibmcloud.com/vulnerabilities/62316
FAQ
What is CVE-2010-5277?
CVE-2010-5277 is a vulnerability with a CVSS score of 4.9 (MEDIUM). Unspecified vulnerability in the Views Bulk Operations module 6 before 6.x-1.10 for Drupal allows remote authenticated users with user management permissions to bypass intended access restrictions and...
How severe is CVE-2010-5277?
CVE-2010-5277 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-5277?
Check the references section above for vendor advisories and patch information. Affected products include: Karim Ratib Views Bulk Operations, Drupal Drupal.