← Back

CVE-2013-4504

nvd nist
Published: May 13, 2014Modified: May 6, 2026

JSON object

Loading...
2.6
Vector
AV:N/AC:H/Au:N/C:P/I:N/A:N
Exploitability: 4.9 / Impact: 2.9
Source: NVD

Description

The Monster Menus module 7.x-1.x before 7.x-1.15 allows remote attackers to read arbitrary node comments via a crafted URL.

Affected (16)

Monster Menus Project
1 product
Monster Menus
Configuration A
16 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Monster Menus
Version 7.x-1.0
Monster Menus
Version 7.x-1.10
Monster Menus
Version 7.x-1.11
Monster Menus
Version 7.x-1.12
Monster Menus
Version 7.x-1.13
Monster Menus
Version 7.x-1.14
Monster Menus
Version 7.x-1.1
Monster Menus
Version 7.x-1.2
Monster Menus
Version 7.x-1.3
Monster Menus
Version 7.x-1.4
Monster Menus
Version 7.x-1.5
Monster Menus
Version 7.x-1.6
Monster Menus
Version 7.x-1.7
Monster Menus
Version 7.x-1.8
Monster Menus
Version 7.x-1.9
Monster Menus
Version 7.x-1.x dev
Running on/withPlatform Versions
Drupal
Drupal
All versions

Related CWEs

CWE-264
CWE-264

References (6)

Source: secalert@redhat.com
Source: secalert@redhat.com
Patch
Source: secalert@redhat.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.