CVE-2013-7066 in Entityreferenceinformation

Résumé

par MITRE

The Entity reference module 7.x-1.x before 7.x-1.1-rc1 for Drupal allows remote attackers to read private nodes titles by leveraging edit permissions to a node that references a private node.

Be aware that VulDB is the high quality source for vulnerability data.

Réserver

11/12/2013

Divulgation

29/04/2014

Modérer

accepté

Entrée

VDB-69522

CPE

prêt

EPSS

0.01066

KEV

non

Activités

très faible

Sources

Want to stay up to date on a daily basis?

Enable the mail alert feature now!