Page 2 of 6 results (0.003 seconds)
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2008-6908
https://notcve.org/view.php?id=CVE-2008-6908
Services 5.x before 5.x-0.92 and 6.x before 6.x-0.13, a module for Drupal, uses an insecure hash when signing requests, which allows remote attackers to impersonate other users and gain privileges. Services v5.x anterior a v5.x-0.92 y v6.x anterior a v6.x-0.13, un módulo de Drupal, utiliza un hash inseguro al firmar las solicitudes, lo que permite a atacantes remotos suplantar a otros usuarios y obtener privilegios. • http://drupal.org/node/348295 http://osvdb.org/50743 http://www.securityfocus.com/bid/32894 https://exchange.xforce.ibmcloud.com/vulnerabilities/47458 • CWE-310: Cryptographic Issues •