Pass2Pdf
1 CVEs
product
Monthly
The pass2pdf module for Drupal does not restrict access to generated PDF files, which allows remote attackers to obtain user passwords via unspecified vectors. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity.
Privilege Escalation
Pass2Pdf
NVD
CVSS 2.0
5.0
EPSS
0.3%
EPSS 0%
CVSS 5.0
MEDIUM
PATCH
This Month
The pass2pdf module for Drupal does not restrict access to generated PDF files, which allows remote attackers to obtain user passwords via unspecified vectors. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity.
Privilege Escalation
Pass2Pdf
NVD