Skip to main content

Shibboleth Authentication

2 CVEs product

Monthly

CVE-2015-5513 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Shibboleth authentication module 6.x-4.x before 6.x-4.2 and 7.x-4.x before 7.x-4.2 for Drupal allows remote authenticated users with the "Administer. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Shibboleth Authentication
NVD
CVSS 2.0
2.1
EPSS
0.2%
CVE-2015-3375 MEDIUM PATCH This Month

Cross-site request forgery (CSRF) vulnerability in the Shibboleth Authentication module before 6.x-4.1 and 7.x-4.x before 7.x-4.1 for Drupal allows remote attackers to hijack the authentication of. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.

CSRF Shibboleth Authentication
NVD
CVSS 2.0
5.8
EPSS
0.2%
EPSS 0% CVSS 2.1
LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Shibboleth authentication module 6.x-4.x before 6.x-4.2 and 7.x-4.x before 7.x-4.2 for Drupal allows remote authenticated users with the "Administer. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Shibboleth Authentication
NVD
EPSS 0% CVSS 5.8
MEDIUM PATCH This Month

Cross-site request forgery (CSRF) vulnerability in the Shibboleth Authentication module before 6.x-4.1 and 7.x-4.x before 7.x-4.1 for Drupal allows remote attackers to hijack the authentication of. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.

CSRF Shibboleth Authentication
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy