Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Drupal Permissions Privileges and Access Controls Vulnerability - CVE-2012-2153 - Vulnerability Database
Drupal

Drupal Permissions Privileges and Access Controls Vulnerability - CVE-2012-2153

Medium
Reference: CVE-2012-2153
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2012-2153
Title: Drupal Permissions Privileges and Access Controls Vulnerability
Overview:

Drupal 7.x before 7.14 does not properly restrict access to nodes in a list when using a quotcontributed node access modulequot which allows remote authenticated users with the quotAccess the content overview pagequot permission to read all published nodes by accessing the admin/content page.