This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:drupal:drupal:6.0:rc-4
Detail
VendorDrupalFirst view 2008-04-11
ProductDrupalLast view2015-03-25
Version6.0TypeApplication
Edition 
Language 
Updaterc-4 
 
CPE Productcpe:/a:drupal:drupal

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
3.52015-03-25CVE-2015-2559NetworkMediumRequires ...
52014-11-24CVE-2014-9016NetworkLowNone Requ...
6.82014-11-24CVE-2014-9015NetworkMediumNone Requ...
4.32014-04-23CVE-2014-2983NetworkMediumNone Requ...
7.52014-01-24CVE-2014-1475NetworkLowNone Requ...
Hide | Show 15 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
52012-05-21CVE-2012-2922NetworkLowNone Requ...
6.82012-03-28CVE-2007-6752NetworkMediumNone Requ...
3.52009-12-21CVE-2009-4370NetworkMediumRequires ...
3.52009-12-21CVE-2009-4369NetworkMediumRequires ...
52009-07-08CVE-2009-2374NetworkLowNone Requ...
4.32009-07-08CVE-2009-2373NetworkMediumNone Requ...
6.52009-07-08CVE-2009-2372NetworkLowRequires ...
4.32009-05-06CVE-2009-1576NetworkMediumNone Requ...
4.32009-05-06CVE-2009-1575NetworkMediumNone Requ...
62008-10-29CVE-2008-4792NetworkMediumRequires ...
62008-10-29CVE-2008-4791NetworkMediumRequires ...
62008-10-29CVE-2008-4789NetworkMediumRequires ...
6.82008-07-18CVE-2008-3222NetworkMediumNone Requ...
7.52008-05-16CVE-2008-2271NetworkLowNone Requ...
5.82008-04-11CVE-2008-1729NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
29% (5)CWE-264Permissions, Privileges, and Access Controls
23% (4)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
11% (2)CWE-200Information Exposure
5% (1)CWE-352Cross-Site Request Forgery (CSRF)
5% (1)CWE-287Improper Authentication
Hide | Show 4 More...
%idName
5% (1)CWE-284Access Control (Authorization) Issues
5% (1)CWE-255Credentials Management
5% (1)CWE-94Failure to Control Generation of Code ('Code Injection')
5% (1)CWE-20Improper Input Validation

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:7856DSA-1792 drupal6 -- multiple vulnerabilities
oval:org.mitre.oval:def:13542DSA-1792-1 drupal6 -- multiple
oval:org.mitre.oval:def:24560DSA-2914-1 drupal6 - security update
oval:org.mitre.oval:def:22156DSA-2851-1 drupal6 - impersonation
oval:org.mitre.oval:def:28341DSA-3075-1 -- drupal7 security update
Hide | Show 2 More...
idName
oval:org.mitre.oval:def:7333DSA-1930 drupal6 -- several vulnerabilities
oval:org.mitre.oval:def:13660DSA-1930-1 drupal6 -- several vulnerabilities

Open Source Vulnerability Database (OSVDB)

idDescription
61105Drupal Core Menu Module Admin Page Unspecified XSS
61104Drupal Core Contact Module Admin Page Category Parameter XSS
55525Drupal Core User Signature Format Weakness
55524Drupal Core Forum Module Unspecified XSS
54153Drupal Core Form Submission Unspecified Information Disclosure
Hide | Show 7 More...
idDescription
54152Drupal Core UTF-7 Unspecified XSS
49523Drupal Core BlogAPI Module Internal Form Field Value Manipulation Remote Auth...
49522Drupal User Module Unspecified Login Access Rules Remote Authentication Bypass
48999Drupal Core Upload Module Unprivileged Content File Attachment Weakness
46945Drupal User Module Session Fixation
45170Site Documentation Module for Drupal Database Tables Access Content Permissio...
44270Drupal Menu System Handler Security Bypass

OpenVAS Exploits

idDescription
2012-10-29Name : Fedora Update for drupal7 FEDORA-2012-16421
File : nvt/gb_fedora_2012_16421_drupal7_fc16.nasl
2012-10-29Name : Fedora Update for drupal7 FEDORA-2012-16442
File : nvt/gb_fedora_2012_16442_drupal7_fc17.nasl
2012-08-30Name : Fedora Update for drupal7 FEDORA-2012-8398
File : nvt/gb_fedora_2012_8398_drupal7_fc17.nasl
2012-06-04Name : Fedora Update for drupal7 FEDORA-2012-8360
File : nvt/gb_fedora_2012_8360_drupal7_fc15.nasl
2012-06-04Name : Fedora Update for drupal7 FEDORA-2012-8362
File : nvt/gb_fedora_2012_8362_drupal7_fc16.nasl
Hide | Show 14 More...
idDescription
2009-12-30Name : FreeBSD Ports: drupal5
File : nvt/freebsd_drupal515.nasl
2009-11-11Name : Debian Security Advisory DSA 1930-1 (drupal6)
File : nvt/deb_1930_1.nasl
2009-07-15Name : FreeBSD Ports: drupal5
File : nvt/freebsd_drupal513.nasl
2009-07-15Name : Drupal Information Disclosure Vulnerability
File : nvt/gb_drupal_info_disclosure_vuln.nasl
2009-07-15Name : Drupal XSS and Code Injection Vulnerability
File : nvt/gb_drupal_xss_n_code_inj_vuln.nasl
2009-05-11Name : Debian Security Advisory DSA 1792-1 (drupal6)
File : nvt/deb_1792_1.nasl
2009-05-05Name : FreeBSD Ports: drupal5
File : nvt/freebsd_drupal511.nasl
2009-05-05Name : Fedora Core 10 FEDORA-2009-4175 (drupal)
File : nvt/fcore_2009_4175.nasl
2009-05-02Name : Drupal HTML Injection and Information Disclosure Vulnerabilities
File : nvt/drupal_34779.nasl
2009-02-17Name : Fedora Update for drupal FEDORA-2008-6411
File : nvt/gb_fedora_2008_6411_drupal_fc8.nasl
2009-02-17Name : Fedora Update for drupal FEDORA-2008-6415
File : nvt/gb_fedora_2008_6415_drupal_fc9.nasl
2009-02-17Name : Fedora Update for drupal FEDORA-2008-6916
File : nvt/gb_fedora_2008_6916_drupal_fc8.nasl
2008-11-04Name : Drupal Core Multiple Vulnerabilities
File : nvt/gb_drupal_mult_vuln_oct08.nasl
2008-11-01Name : FreeBSD Ports: drupal5
File : nvt/freebsd_drupal58.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2014-B-0006Multiple Security Vulnerabilities in Drupal
Severity : Category II - VMSKEY : V0043618

Snort® IPS/IDS

DateDescription
2014-01-10OpenEngine filepool.php remote file include attempt
RuleID : 27196 - Type : SERVER-WEBAPP - Revision : 2

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2015-03-31Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2015-181.nasl - Type : ACT_GATHER_INFO
2015-03-23Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3200.nasl - Type : ACT_GATHER_INFO
2015-03-20Name : The remote web server is running a PHP application that is affected by multip...
File : drupal_7_35.nasl - Type : ACT_GATHER_INFO
2015-01-05Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_5e1351788aeb11e4801f0022156e8794.nasl - Type : ACT_GATHER_INFO
2014-12-07Name : The remote Fedora host is missing a security update.
File : fedora_2014-15583.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2014-12-07Name : The remote Fedora host is missing a security update.
File : fedora_2014-15630.nasl - Type : ACT_GATHER_INFO
2014-12-03Name : The remote Fedora host is missing a security update.
File : fedora_2014-15515.nasl - Type : ACT_GATHER_INFO
2014-12-03Name : The remote Fedora host is missing a security update.
File : fedora_2014-15519.nasl - Type : ACT_GATHER_INFO
2014-12-03Name : The remote Fedora host is missing a security update.
File : fedora_2014-15522.nasl - Type : ACT_GATHER_INFO
2014-12-03Name : The remote Fedora host is missing a security update.
File : fedora_2014-15528.nasl - Type : ACT_GATHER_INFO
2014-11-21Name : The remote Debian host is missing a security-related update.
File : debian_DSA-3075.nasl - Type : ACT_GATHER_INFO
2014-11-21Name : The remote web server is running a PHP application that is affected by multip...
File : drupal_7_34.nasl - Type : ACT_GATHER_INFO
2014-04-27Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2913.nasl - Type : ACT_GATHER_INFO
2014-04-27Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2914.nasl - Type : ACT_GATHER_INFO
2014-04-21Name : The remote web server is running a PHP application that is affected by an inf...
File : drupal_6_31.nasl - Type : ACT_GATHER_INFO
2014-04-21Name : The remote web server is running a PHP application that is affected by an inf...
File : drupal_7_27.nasl - Type : ACT_GATHER_INFO
2014-02-16Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2014-031.nasl - Type : ACT_GATHER_INFO
2014-02-03Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2851.nasl - Type : ACT_GATHER_INFO
2014-01-23Name : The remote web server is running a PHP application that is affected by a secu...
File : drupal_6_30.nasl - Type : ACT_GATHER_INFO
2014-01-23Name : The remote web server is running a PHP application that is affected by securi...
File : drupal_7_26.nasl - Type : ACT_GATHER_INFO
2014-01-21Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2847.nasl - Type : ACT_GATHER_INFO
2013-04-20Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2013-074.nasl - Type : ACT_GATHER_INFO
2012-06-04Name : The remote Fedora host is missing a security update.
File : fedora_2012-8360.nasl - Type : ACT_GATHER_INFO
2012-06-04Name : The remote Fedora host is missing a security update.
File : fedora_2012-8362.nasl - Type : ACT_GATHER_INFO
2012-06-04Name : The remote Fedora host is missing a security update.
File : fedora_2012-8398.nasl - Type : ACT_GATHER_INFO