The Forward module before 4.7-1.1 and 5.x before 5.x-1.0 for Drupal allows remote attackers to read restricted posts in (1) Organic Groups, (2) Taxonomy Access Control, (3) Taxonomy Access Lite, and other unspecified node access modules, via modified URL arguments.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2007-07-11 10:30
Updated : 2017-07-28 18:32
NVD link : CVE-2007-3690
Mitre link : CVE-2007-3690
JSON object : View
CWE
Products Affected
drupal
- forward_module