// For flags

CVE-2007-0658

 

Severity Score

5.0
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The (1) Textimage 4.7.x before 4.7-1.2 and 5.x before 5.x-1.1 module for Drupal and the (2) Captcha 4.7.x before 4.7-1.2 and 5.x before 5.x-1.1 module for Drupal allow remote attackers to bypass the CAPTCHA test via an empty captcha element in $_SESSION.

Los módulos para Drupal (1) Textimage 4.7.x versiones anteriores a 4.7-1.2 y 5.x versiones anteriores a 5.x-1.1 y (2) Captcha 4.7.x versiones anteriores a 4.7-1.2 y 5.x versiones anteriores a 5.x-1.1, permiten a atacantes remotos evitar la comprobación CAPTCHA mediante un elemento vacío captcha in $_SESSION.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
Partial
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2007-02-01 CVE Reserved
  • 2007-02-01 CVE Published
  • 2024-06-26 EPSS Updated
  • 2024-08-07 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Drupal
Search vendor "Drupal"
 Drupal
Search vendor "Drupal" for product "Drupal"
 4.7
Search vendor "Drupal" for product "Drupal" and version "4.7"
-
Affected
Drupal
Search vendor "Drupal"
 Drupal
Search vendor "Drupal" for product "Drupal"
 4.7.1
Search vendor "Drupal" for product "Drupal" and version "4.7.1"
-
Affected
Drupal
Search vendor "Drupal"
 Drupal
Search vendor "Drupal" for product "Drupal"
 4.7.2
Search vendor "Drupal" for product "Drupal" and version "4.7.2"
-
Affected
Drupal
Search vendor "Drupal"
 Drupal
Search vendor "Drupal" for product "Drupal"
 4.7.3
Search vendor "Drupal" for product "Drupal" and version "4.7.3"
-
Affected
Drupal
Search vendor "Drupal"
 Drupal
Search vendor "Drupal" for product "Drupal"
 4.7.4
Search vendor "Drupal" for product "Drupal" and version "4.7.4"
-
Affected
Drupal
Search vendor "Drupal"
 Drupal
Search vendor "Drupal" for product "Drupal"
 4.7.5
Search vendor "Drupal" for product "Drupal" and version "4.7.5"
-
Affected
Drupal
Search vendor "Drupal"
 Drupal
Search vendor "Drupal" for product "Drupal"
 4.7.6
Search vendor "Drupal" for product "Drupal" and version "4.7.6"
-
Affected
Drupal
Search vendor "Drupal"
 Drupal
Search vendor "Drupal" for product "Drupal"
 4.7_rev1.15
Search vendor "Drupal" for product "Drupal" and version "4.7_rev1.15"
-
Affected
Drupal
Search vendor "Drupal"
 Drupal
Search vendor "Drupal" for product "Drupal"
 5.0
Search vendor "Drupal" for product "Drupal" and version "5.0"
-
Affected
Drupal
Search vendor "Drupal"
 Drupal
Search vendor "Drupal" for product "Drupal"
 5.1
Search vendor "Drupal" for product "Drupal" and version "5.1"
-
Affected
Drupal
Search vendor "Drupal"
 Textimage
Search vendor "Drupal" for product "Textimage"
 4.7
Search vendor "Drupal" for product "Textimage" and version "4.7"
-
Affected
Drupal
Search vendor "Drupal"
 Textimage
Search vendor "Drupal" for product "Textimage"
 5.0
Search vendor "Drupal" for product "Textimage" and version "5.0"
-
Affected