The Taxonomy module in Drupal 7.x prior to 7.26, when upgraded from an earlier version of Drupal, does not properly restrict access to unpublished content, which allows remote authenticated users to obtain sensitive information via a listing page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
drupal drupal 7.0 |
||
drupal drupal 7.10 |
||
drupal drupal 7.11 |
||
drupal drupal 7.19 |
||
drupal drupal 7.2 |
||
drupal drupal 7.14 |
||
drupal drupal 7.15 |
||
drupal drupal 7.16 |
||
drupal drupal 7.22 |
||
drupal drupal 7.23 |
||
drupal drupal 7.1 |
||
drupal drupal 7.17 |
||
drupal drupal 7.18 |
||
drupal drupal 7.24 |
||
drupal drupal 7.12 |
||
drupal drupal 7.13 |
||
drupal drupal 7.20 |
||
drupal drupal 7.21 |