The Node Hierarchy module 5.x prior to 5.x-1.1 and 6.x prior to 6.x-1.0 for Drupal does not properly implement access checks, which allows remote attackers with "access content" permissions to bypass restrictions and modify the node hierarchy via unspecified attack vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
drupal drupal 5.0 |
||
drupal drupal 6.0 |
||
drupal node hierarchy module 5 |
||
drupal node hierarchy module 6 |