The Commons Group module prior to 7.x-3.1 for Drupal, as used in the Commons module prior to 7.x-3.1, does not properly restrict access to groups, which allows remote malicious users to post arbitrary content to groups via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
acquia commons_group |
||
acquia commons |
||
acquia commons _group7.x-3.x |
||
acquia commons 7.x-3.x |