1 results (0.022 seconds)

CVSS: 7.5EPSS: 1%CPEs: 7EXPL: 0

The Protected Node module 6.x-1.x before 6.x-1.6 for Drupal does not properly "protect node access when nodes are accessed outside of the standard node view," which allows remote attackers to bypass intended access restrictions. El módulo Protected Node v6.x-1.x anterior a v6.x-1.6 para Drupal no protege de forma adecuada el acceso al nodo protegido cuando se accede a los nodos desde una vista que no es la estándar, lo que permitiría a atacantes remotos a evitar las restricciones de acceso impuestas. • http://drupal.org/node/1258034 http://drupal.org/node/1632918 http://secunia.com/advisories/49509 http://www.openwall.com/lists/oss-security/2012/06/14/3 http://www.osvdb.org/82984 http://www.securityfocus.com/bid/54001 https://exchange.xforce.ibmcloud.com/vulnerabilities/76291 • CWE-264: Permissions, Privileges, and Access Controls •