Lucene search
GoogleOSV:GHSA-VPM6-H53M-X2XFHistoryMay 17, 2022 - 4:56 a.m.
Drupal improper access restrictions
2022-05-1704:56:41
Google
osv.dev
6
0.002 Low
EPSS
Percentile
60.4%
Drupal 7.x before 7.14 does not properly restrict access to nodes in a list when using a “contributed node access module,” which allows remote authenticated users with the “Access the content overview page” permission to read all published nodes by accessing the admin/content page.
References
drupal.org/drupal-7.14
drupal.org/node/1557938
drupal.org/node/1558478
drupalcode.org/project/drupal.git/commit/c6d2b8311b82fe78d18732f01a68ceca3dea50af
nvd.nist.gov/vuln/detail/CVE-2012-2153
web.archive.org/web/20150523060428/www.mandriva.com/en/support/security/advisories/advisory/MDVSA-2013:074/?name=MDVSA-2013:074
web.archive.org/web/20200229101926/www.securityfocus.com/bid/53362
Related
prion
prion
Code injection
2012-10-01 00:55:00
nvd
nvd
CVE-2012-2153
2012-10-01 00:55:01
github
github
Drupal improper access restrictions
2022-05-17 04:56:41
cve
cve
CVE-2012-2153
2012-10-01 00:55:01
ubuntucve
ubuntucve
CVE-2012-2153
2012-10-01 00:00:00
cvelist
cvelist
CVE-2012-2153
2012-10-01 00:00:00
debiancve
debiancve
CVE-2012-2153
2012-10-01 00:55:00
nessus
nessus
Drupal 7.x < 7.13 Multiple Vulnerabilities
2016-10-28 00:00:00
Mandriva Linux Security Advisory : drupal (MDVSA-2013:074)
2013-04-20 00:00:00
drupal
drupal
SA-CORE-2012-002 - Drupal core multiple vulnerabilities
2012-05-02 00:00:00