CVE-2012-4483

2012-10-31T16:55:00
ID CVE-2012-4483
Type cve
Reporter cve@mitre.org
Modified 2012-11-13T05:00:00

Description

The commons_discussion_views_default_views function in modules/features/commons_discussion/commons_discussion.views_default.inc in the Drupal Commons module 6.x-2.x before 6.x-2.8 for Drupal does not properly enforce intended node access restrictions, which might allow remote attackers to obtain sensitive information via the recent comments listing.