2 matches found
CVE-2009-2077
CVE-2009-2077 affects Drupal 6.x before 6.x-2.6 via a Drupal module, permitting remote authenticated users to bypass access restrictions. The issue enables: (1) reading unpublished content from anonymous users when a view is configured to display that content, and (2) reading private content in g...
CVE-2009-2077
Drupal 6.x before 6.x-2.6, a module for Drupal, allows remote authenticated users to bypass access restrictions and 1 read unpublished content from anonymous users when a view is already configured to display the content, and 2 read private content in generated queries...