Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Drupal Permissions Privileges and Access Controls Vulnerability - CVE-2012-1590 - Vulnerability Database
Drupal

Drupal Permissions Privileges and Access Controls Vulnerability - CVE-2012-1590

Medium
Reference: CVE-2012-1590
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2012-1590
Title: Drupal Permissions Privileges and Access Controls Vulnerability
Overview:

The forum list in Drupal 7.x before 7.14 does not properly check user permissions for unpublished forum posts which allows remote authenticated users to obtain sensitive information such as the post title via the forum overview page.