The Node Hierarchy module 5.x before 5.x-1.1 and 6.x before 6.x-1.0 for Drupal does not properly implement access checks, which allows remote attackers with “access content” permissions to bypass restrictions and modify the node hierarchy via unspecified attack vectors.
CPE | Name | Operator | Version |
---|---|---|---|
drupal | eq | 5.0 | |
drupal | eq | 6.0 | |
node_hierarchy_module | eq | 5 | |
node_hierarchy_module | eq | 6 |