2 matches found
CVE-2012-2063
The Drupal Slidebox module (7.x) is vulnerable in 7.x-1.x up to 7.x-1.3 due to insufficient permission checks, allowing remote attackers to access content they should not see and disclose sensitive information. The Drupal security advisory SA-CONTRIB-2012-037 clarifies that the issue stems from i...
SA-CONTRIB-2012-037 - Slidebox - access bypass
CVE: CVE-2012-2063 The Slidebox module allows webmasters do display a link to the next node in a jQuery box that slides in from the right side of the page after a user scrolls past a certain point. While the module checks for "published" status, the module does not contain sufficient usage of...