The Stage File Proxy module 7.x-1.x before 7.x-1.4 for Drupal allows remote attackers to cause a denial of service (file operations performance degradation and failure) via a large number of requests.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-noinfo,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| stage_file_proxy_project | stage_file_proxy | 7.x-1.2 |
| stage_file_proxy_project | stage_file_proxy | 7.x-1.3 |
| stage_file_proxy_project | stage_file_proxy | 7.x-1.1 |
| stage_file_proxy_project | stage_file_proxy | 7.x-1.0 |
| stage_file_proxy_project | stage_file_proxy | 7.x-1.x |
Allocation of Resources Without Limits or Throttling vulnerability in Drupal Stage File Proxy allows Flooding.This issue affects Stage File Proxy: from 0.0.0 before 3.1.5.
CVSS 3.x
| Source | Score | Severity | Vector | Exploitability | Impact |
|---|---|---|---|---|---|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 5.9 | MEDIUM | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H | 2.2 | 3.6 |
Products Affected
| Vendor | Product | Version |
|---|---|---|
| stage_file_proxy_project | stage_file_proxy | * |