CVE-2007-3690

2007-07-1117:00:00

mitre

www.cve.org

AI Score

6.7

Confidence

Low

EPSS

0.01

Percentile

83.7%

JSON

The Forward module before 4.7-1.1 and 5.x before 5.x-1.0 for Drupal allows remote attackers to read restricted posts in (1) Organic Groups, (2) Taxonomy Access Control, (3) Taxonomy Access Lite, and other unspecified node access modules, via modified URL arguments.

References

drupal.org/node/152806

drupal.org/node/158022

drupal.org/node/158025

osvdb.org/37896

secunia.com/advisories/25999

www.securityfocus.com/bid/24862

www.vupen.com/english/advisories/2007/2469

exchange.xforce.ibmcloud.com/vulnerabilities/35318