Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Entityform Block Project Subscribe
Filtered by product Entityform Block
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-5493 1 Entityform Block Project 1 Entityform Block 2015-08-19 5.0 MEDIUM N/A
The Entityform Block module 7.x-1.x before 7.x-1.3 for Drupal does not properly check permissions when a form is locked to a role, which allows remote attackers to obtain access to certain entityforms via unspecified vectors.