Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Bad Behavior module 6.x-2.x before 6.x-2.2216 and 7.x-2.x before 7.x-2.2216 for Drupal logs usernames and passwords, which allows remote authenticated users with the "administer bad behavior" permission to obtain sensitive information by reading a log file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Drupal Bad Behavior模块信息泄露漏洞
Vulnerability Description
Drupal是Drupal社区所维护的一套用PHP语言开发的免费、开源的内容管理系统。Bad Behavior是其中的一个垃圾屏蔽模块。 Drupal Bad Behavior模块6.x-2.2216之前6.x-2.x版本和7.x-2.2216之前7.x-2.x版本中存在安全漏洞,该漏洞源于程序记录用户名和密码。远程攻击者可通过读取日志文件利用该漏洞以‘administer bad behavior’权限利用该漏洞获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A