CVE-2008-1729
CVE-2008-1729 (Drupal 6 before 6.2) : The vulnerability arises in Drupal’s menu system due to a missing check for the "access content" permission, enabling remote attackers to (1) edit arbitrary users’ profile pages and read sensitive data from (2) tracker pages and (3) blog pages. Additionally, ...