Vulnerabilities (CVE)

Filtered by vendor Blaine Lang Subscribe
Filtered by product Filedepot
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-2719 2 Blaine Lang, Drupal 2 Filedepot, Drupal 2024-11-21 5.1 MEDIUM N/A
The filedepot module 6.x-1.x before 6.x-1.3 for Drupal, when accessed using multiple different browsers from the same IP address, causes Internet Explorer sessions to "switch users" when uploading a file, which has unspecified impact possibly involving file uploads to the wrong user directory, aka "Session Management Vulnerability."