Lucene search
MitreCVELIST:CVE-2010-2352HistoryJun 21, 2010 - 7:00 p.m.
CVE-2010-2352
2010-06-2119:00:00
mitre
www.cve.org
1
The Node Reference module in Content Construction Kit (CCK) module 5.x before 5.x-1.11 and 6.x before 6.x-2.7 for Drupal does not perform access checks before displaying referenced nodes, which allows remote attackers to read controlled nodes.
References
drupal.org/node/829566
lists.fedoraproject.org/pipermail/package-announce/2010-June/043100.html
lists.fedoraproject.org/pipermail/package-announce/2010-June/043172.html
lists.fedoraproject.org/pipermail/package-announce/2010-June/043191.html
osvdb.org/65615
secunia.com/advisories/40243
secunia.com/advisories/40318
www.vupen.com/english/advisories/2010/1546
exchange.xforce.ibmcloud.com/vulnerabilities/59515
Related
cve
cve
CVE-2010-2352
2010-06-21 19:30:02
prion
prion
Improper access control
2010-06-21 19:30:00
nvd
nvd
CVE-2010-2352
2010-06-21 19:30:02
nessus
nessus
Fedora 13 : drupal-cck-6.x.2.7-1.fc13 (2010-10200)
2010-07-01 00:00:00
Fedora 12 : drupal-cck-6.x.2.7-1.fc12 (2010-10176)
2010-07-01 00:00:00
Fedora 11 : drupal-cck-6.x.2.7-1.fc11 (2010-10127)
2010-07-01 00:00:00