1 results (0.003 seconds)
CVSS: 5.3EPSS: 0%CPEs: 8EXPL: 0
CVSS: 5.3EPSS: 0%CPEs: 8EXPL: 0CVE-2009-4520
https://notcve.org/view.php?id=CVE-2009-4520
31 Dec 2009 — The CCK Comment Reference module 5.x before 5.x-1.2 and 6.x before 6.x-1.3, a module for Drupal, allows remote attackers to bypass intended access restrictions and read comments by using the autocomplete path. El módulo CK Comment Reference v5.x anteriores a v5.x-1.2 y v6.x anteriores a v6.x-1.3, un módulo para Drupal, permite a atacantes remotos eludir las restricciones de acceso implementadas y leer comentarios al usar el autocompletado. • http://drupal.org/node/617380 • CWE-264: Permissions, Privileges, and Access Controls •