3 matches found
CVE-2009-4520
The CCK Comment Reference module 5.x before 5.x-1.2 and 6.x before 6.x-1.3, a module for Drupal, allows remote attackers to bypass intended access restrictions and read comments by using the autocomplete path...
CVE-2009-4520
The CCK Comment Reference module 5.x before 5.x-1.2 and 6.x before 6.x-1.3, a module for Drupal, allows remote attackers to bypass intended access restrictions and read comments by using the autocomplete path...
CVE-2009-4520
The vulnerability CVE-2009-4520 affects the Drupal CCK Comment Reference module. Affected versions are 5.x before 5.x-1.2 and 6.x before 6.x-1.3. The issue allows remote attackers to bypass access controls and read comments by abusing the module’s autocomplete path. Remediation requires upgrading...