PT-2013-2230 · Banckle · Banckle Chat Module For Drupal

Forest Monsen

Published

2013-03-27

Updated

2013-03-28

CVE-2013-0318

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Banckle Chat module for Drupal (affected versions not specified)

Description The issue concerns the admin page in the Banckle Chat module for Drupal, where access restrictions are not properly enforced. This allows remote attackers to bypass intended restrictions, although the specific vectors used for the attack are not detailed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2013-0318

Affected Products

Banckle Chat Module For Drupal

PT-2013-2230 · Banckle · Banckle Chat Module For Drupal

CVE-2013-0318

Weakness Enumeration

Related Identifiers

Affected Products

References · 3