Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Drupal Permissions Privileges and Access Controls Vulnerability - CVE-2008-4792 - Vulnerability Database
Drupal

Drupal Permissions Privileges and Access Controls Vulnerability - CVE-2008-4792

Medium
Reference: CVE-2008-4792
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2008-4792
Title: Drupal Permissions Privileges and Access Controls Vulnerability
Overview:

The core BlogAPI module in Drupal 5.x before 5.11 and 6.x before 6.5 does not properly validate unspecified content fields of an internal Drupal form which allows remote authenticated users to bypass intended access restrictions via modified field values.