7 matches found
EUVD-2012-4427
Malware in sbrugna...
CVE-2012-4498
The Activism module 6.x-2.x before 6.x-2.1 for Drupal does not properly restrict access to the "Campaign" content type, which might allow remote attackers to bypass access restrictions and possibly have other unspecified impact...
CVE-2012-4498
The Activism module 6.x-2.x before 6.x-2.1 for Drupal does not properly restrict access to the "Campaign" content type, which might allow remote attackers to bypass access restrictions and possibly have other unspecified impact...
Design/Logic Flaw
The Activism module 6.x-2.x before 6.x-2.1 for Drupal does not properly restrict access to the "Campaign" content type, which might allow remote attackers to bypass access restrictions and possibly have other unspecified impact...
CVE-2012-4498
The CVE-2012-4498 issue affects Drupal's Activism module (6.x-2.x) prior to 6.x-2.1. The root cause is improper access control that fails to restrict the Campaign content type, potentially allowing remote attackers to bypass access restrictions and cause other unspecified impact. Remediation per ...
CVE-2012-4498
The Activism module 6.x-2.x before 6.x-2.1 for Drupal does not properly restrict access to the "Campaign" content type, which might allow remote attackers to bypass access restrictions and possibly have other unspecified impact...
SA-CONTRIB-2012-129 - Activism - Access Bypass
The Activism module is an attempt to standardize the way online advocacy tools are built in Drupal 6. It ships with and creates a "Campaign" content type which is always viewable, even when an administrator unpublishes it or otherwise restricts viewing access. CVE: Requested Versions affected...