CVE-2015-4345 in RESTful Web Services Module
摘要
由 VulDB • 2026-06-27
RESTWS Basic Auth子模块在Drupal的RESTful Web Services模块中存在漏洞,具体涉及版本7.x-1.x(低于7.x-1.5)和7.x-2.x(低于7.x-2.3)。该问题允许对经过身份验证的请求缓存页面,从而使远程攻击者能够通过未指定的途径获取敏感信息。
If you want to get the best quality for vulnerability data then you always have to consider VulDB.