Categories

Applications (151)
Blogs (3)
Content Management (101)
Customer Relationship (2)
Discussion Boards (19)
E-Commerce (8)
General Purpose Directories (1)
Image Galleries (15)
Mailing Lists (1)
Tips (3)
Vulnerabilities (249)
Access Bypass (42)
Cross Site Scripting (94)
Denial Of Service (2)
File Inclusion (40)
Information Disclosure (13)
Privilege Escalation (2)
Remote Command Execution (12)
Session Hijacking (1)
SQL Injection (84)
« Drupal Content Construction Kit Nodereference Module XSS
WordPress Pool Theme Url XSS »

Drupal Modules Access Bypass

Published by David August 24th, 2007 in Access Bypass.

Application: Drupal
Affected Version:
* Project module 5.x-1.0, 4.7.x-2.3, and 4.7.x-1.3
* Project issue tracking module 5.x-1.0, 4.7.x-2.4, and 4.7.x-1.4
Vendor’s URL: http://drupal.org/
Bug Type: Access bypass
Risk Level: Medium

Solution:
- Update the version of Project module and Project issue tracking module accordingly.
http://drupal.org/node/168760

0 Responses to “Drupal Modules Access Bypass”

Feed for this Entry Trackback Address
  1. No Comments

Leave a Reply

You must login to post a comment.

« Drupal Content Construction Kit Nodereference Module XSS
WordPress Pool Theme Url XSS »

Subscribe

Latest

Archives



Valid XHTML 1.0 Transitional