Skip to main content

Open Semantic Framework

3 CVEs product

Monthly

CVE-2015-7234 MEDIUM PATCH This Month

The OSF module 7.x-3.x before 7.x-3.1 for Drupal, when the OSF Ontology and OSF Import modules are enabled, allows user-assisted remote attackers to delete arbitrary files via unspecified vectors. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable.

Information Disclosure Open Semantic Framework
NVD
CVSS 2.0
4.0
EPSS
0.5%
CVE-2015-7233 MEDIUM PATCH This Month

Cross-site request forgery (CSRF) vulnerability in the OSF module 7.x-3.x before 7.x-3.1 for Drupal, when the OSF Import module is enabled, allows remote attackers to hijack the authentication of. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable.

CSRF Open Semantic Framework
NVD
CVSS 2.0
5.1
EPSS
0.1%
CVE-2015-7232 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in unspecified administration pages in the OSF module 7.x-3.x before 7.x-3.1 for Drupal, when the OSF Ontology module is enabled, allows remote attackers to. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable.

XSS Open Semantic Framework
NVD
CVSS 2.0
2.6
EPSS
0.3%
EPSS 1% CVSS 4.0
MEDIUM PATCH This Month

The OSF module 7.x-3.x before 7.x-3.1 for Drupal, when the OSF Ontology and OSF Import modules are enabled, allows user-assisted remote attackers to delete arbitrary files via unspecified vectors. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable.

Information Disclosure Open Semantic Framework
NVD
EPSS 0% CVSS 5.1
MEDIUM PATCH This Month

Cross-site request forgery (CSRF) vulnerability in the OSF module 7.x-3.x before 7.x-3.1 for Drupal, when the OSF Import module is enabled, allows remote attackers to hijack the authentication of. Rated medium severity (CVSS 5.1), this vulnerability is remotely exploitable.

CSRF Open Semantic Framework
NVD
EPSS 0% CVSS 2.6
LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in unspecified administration pages in the OSF module 7.x-3.x before 7.x-3.1 for Drupal, when the OSF Ontology module is enabled, allows remote attackers to. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable.

XSS Open Semantic Framework
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy