The Authenticated User Page Caching (Authcache) module 7.x-1.x prior to 7.x-1.5 for Drupal does not properly restrict access to cached pages, which allows remote attackers with the same role-combination as the superuser to obtain sensitive information via the cached pages of the superuser.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
drupal authenticated user page caching 7.x-1.0 |
||
drupal authenticated user page caching 7.x-1.1 |
||
drupal authenticated user page caching 7.x-1.2 |
||
drupal authenticated user page caching 7.x-1.3 |
||
drupal authenticated user page caching 7.x-1.4 |
||
drupal authenticated user page caching 7.x-1.5 |