Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Drupal Incorrect Authorization Vulnerability - CVE-2022-25270 - Vulnerability Database
Drupal

Drupal Incorrect Authorization Vulnerability - CVE-2022-25270

Medium
Reference: CVE-2022-25270
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-25270
Title: Drupal Incorrect Authorization Vulnerability
Overview:

The Quick Edit module does not properly check entity access in some circumstances. This could result in users with the quotaccess in-place editingquot permission viewing some content they are are not authorized to access. Sites are only affected if the QuickEdit module (which comes with the Standard profile) is installed.