← Back

CVE-2015-7875

nvd nist
Published: Aug 7, 2017Modified: May 13, 2026

JSON object

Loading...
7.5
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

ctools 6.x-1.x before 6.x-1.14 and 7.x-1.x before 7.x-1.8 in Drupal does not verify the "edit" permission for the "content type" plugins that are used on Panels and similar systems to place content and functionality on a page.

Affected (39)

Chaos Tool Suite Project
1 product
Ctools
Configuration A
39 vulnerable
Vulnerable SoftwareAffected Versions
Ctools
Version 6.x-1.0
Ctools
Version 6.x-1.0 alpha1
Ctools
Version 6.x-1.0 alpha2
Ctools
Version 6.x-1.0 alpha3
Ctools
Version 6.x-1.0 beta1
Ctools
Version 6.x-1.0 beta2
Ctools
Version 6.x-1.0 beta3
Ctools
Version 6.x-1.0 beta4
Ctools
Version 6.x-1.0 rc1
Ctools
Version 6.x-1.11
Ctools
Version 6.x-1.12
Ctools
Version 6.x-1.13
Ctools
Version 6.x-1.1
Ctools
Version 6.x-1.2
Ctools
Version 6.x-1.3
Ctools
Version 6.x-1.4
Ctools
Version 6.x-1.5
Ctools
Version 6.x-1.6
Ctools
Version 6.x-1.7
Ctools
Version 6.x-1.8
Ctools
Version 6.x-1.9
Ctools
Version 6.x-1.x dev
Ctools
Version 7.x-1.0
Ctools
Version 7.x-1.0 alpha1
Ctools
Version 7.x-1.0 alpha2
Ctools
Version 7.x-1.0 alpha3
Ctools
Version 7.x-1.0 alpha4
Ctools
Version 7.x-1.0 beta1
Ctools
Version 7.x-1.0 rc1
Ctools
Version 7.x-1.0 rc2
Ctools
Version 7.x-1.1
Ctools
Version 7.x-1.2
Ctools
Version 7.x-1.3
Ctools
Version 7.x-1.4
Ctools
Version 7.x-1.5
Ctools
Version 7.x-1.6
Ctools
Version 7.x-1.6 rc1
Ctools
Version 7.x-1.7
Ctools
Version 7.x-1.x dev

Related CWEs

CWE-264
CWE-264

References (6)

Source: cve@mitre.org
Mailing ListThird Party Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.