Lucene search
GoogleOSV:GHSA-73Q4-J324-2QCCHistoryFeb 18, 2022 - 12:00 a.m.
Incorrect authorization in Drupal core
2022-02-1800:00:36
Google
osv.dev
32
0.001 Low
EPSS
Percentile
28.4%
The Quick Edit module does not properly check entity access in some circumstances. This could result in users with the “access in-place editing” permission viewing some content they are are not authorized to access. Sites are only affected if the QuickEdit module (which comes with the Standard profile) is installed.
Related
openvas
openvas
Drupal Information Disclosure Vulnerability (SA-CORE-2022-004) - Windows
2022-03-18 00:00:00
Drupal Information Disclosure Vulnerability (SA-CORE-2022-004) - Linux
2022-03-18 00:00:00
cvelist
cvelist
CVE-2022-25270
2022-02-16 23:15:11
osv
osv
BIT-drupal-2022-25270
2024-03-06 10:53:49
CVE-2022-25270
2022-02-17 00:15:07
github
github
Incorrect authorization in Drupal core
2022-02-18 00:00:36
veracode
veracode
Privilege Escalation
2022-02-18 08:26:29
cve
cve
CVE-2022-25270
2022-02-17 00:15:07
drupal
drupal
Drupal core - Moderately critical - Information disclosure - SA-CORE-2022-004
2022-02-16 00:00:00
prion
prion
Design/Logic Flaw
2022-02-17 00:15:00
nvd
nvd
CVE-2022-25270
2022-02-17 00:15:07
nessus
nessus
Drupal 7.x < 7.88 / 9.2.x < 9.2.13 / 9.3.x < 9.3.6 Multiple Vulnerabilities (drupal-2022-02-16)
2022-02-16 00:00:00
Drupal 9.3.x < 9.3.6 Multiple Vulnerabilities
2022-02-18 00:00:00
Drupal 9.2.x < 9.2.13 Multiple Vulnerabilities
2022-02-18 00:00:00
redos
redos
ROS-20220225-02
2022-02-25 00:00:00