CVE-2007-3690

2007-07-1117:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.7%

JSON

The Forward module before 4.7-1.1 and 5.x before 5.x-1.0 for Drupal allows remote attackers to read restricted posts in (1) Organic Groups, (2) Taxonomy Access Control, (3) Taxonomy Access Lite, and other unspecified node access modules, via modified URL arguments.

References

drupal.org/node/152806

drupal.org/node/158022

drupal.org/node/158025

osvdb.org/37896

secunia.com/advisories/25999

www.securityfocus.com/bid/24862

www.vupen.com/english/advisories/2007/2469

exchange.xforce.ibmcloud.com/vulnerabilities/35318