Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-3122

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2009-3122
Last Modified 17 Sep 2009 12:00:00
Published 09 Sep 2009 06:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-3122

Summary

The Ajax Table module 5.x for Drupal does not perform access control, which allows remote attackers to delete arbitrary users and nodes via unspecified vectors.

Vulnerable Systems

Application

  • Chris Shattuck Ajaxtable 5.x-1.x-dev


References

XF - ajaxtable-unspecified-security-bypass(52818)

VUPEN - ADV-2009-2452

BID - 36165

OSVDB - 57435

SECUNIA - 36497

CONFIRM - http://drupal.org/node/560298


Last Updated: 27 May 2016 10:51:08