ID |
CVE-2007-3689
|
Summary |
The Print module before 4.7-1.0 and 5.x before 5.x-1.2 for Drupal allows remote attackers to read restricted posts in (1) Organic Groups, (2) Taxonomy Access Control, (3) Taxonomy Access Lite, and other unspecified node access modules, via modified URL arguments. |
References |
|
Vulnerable Configurations |
|
CVSS |
Base: | 7.8 (as of 29-07-2017 - 01:32) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-Other |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
NETWORK |
LOW |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
COMPLETE |
NONE |
NONE |
|
cvss-vector
via4
|
AV:N/AC:L/Au:N/C:C/I:N/A:N
|
refmap
via4
|
bid | 24862 | confirm | | osvdb | 37897 | secunia | 25978 | vupen | ADV-2007-2470 | xf | printfriendlypages-url-security-bypass(35314) |
|
Last major update |
29-07-2017 - 01:32 |
Published |
11-07-2007 - 17:30 |
Last modified |
29-07-2017 - 01:32 |