Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2014-2983 - Vulnerability Database
Drupal

Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2014-2983

Medium
Reference: CVE-2014-2983
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-2983
Title: Drupal Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

Drupal 6.x before 6.31 and 7.x before 7.27 does not properly isolate the cached data of different anonymous users which allows remote anonymous users to obtain sensitive interim form input information in opportunistic situations via unspecified vectors.