Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Certify Project Subscribe
Filtered by product Certify
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-3404 1 Certify Project 1 Certify 2016-12-05 4.0 MEDIUM N/A
The Certify module before 6.x-2.3 for Drupal does not properly perform node access checks, which allows remote authenticated users to bypass intended access restrictions and obtain sensitive PDF certificate information via vectors related to "showing (and creating) the PDF certificates."