PT-2014-2808 · Drupal · Quiz
Forest Monsen
·
Published
2014-05-13
·
Updated
2014-05-14
·
CVE-2013-4500
CVSS v2.0
4.9
Medium
| Vector | AV:N/AC:M/Au:S/C:N/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Quiz module versions 6.x-4.x before 6.x-4.5
Description
The issue allows remote authenticated users with the
view any quiz results or view results for own quiz permission to delete arbitrary results.Recommendations
For versions prior to 6.x-4.5, update to version 6.x-4.5 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Quiz