4 matches found
CVE-2013-2247
The Fast Permissions Administration module 6.x-2.x before 6.x-2.5 and 7.x-2.x before 7.x-2.3 for Drupal does not properly restrict access to the modal content callback, which allows remote attackers to obtain unspecified access to the permissions edit form...
CVE-2013-2247
The Drupal vulnerability CVE-2013-2247 affects the Fast Permissions Administration module (Drupal 6.x-2.x before 6.x-2.5 and 7.x-2.x before 7.x-2.3). The issue is that access to the modal content callback is not properly restricted, allowing remote attackers to obtain unspecified access to the pe...
CVE-2013-2247
The Fast Permissions Administration module 6.x-2.x before 6.x-2.5 and 7.x-2.x before 7.x-2.3 for Drupal does not properly restrict access to the modal content callback, which allows remote attackers to obtain unspecified access to the permissions edit form...
SA-CONTRIB-2013-054 - Fast Permissions Administration - Access Bypass
The Fast Permissions Administration module enables you to use inline filters on the permissions page, as well as loading the permissions form through a modal dialog. The module doesn't sufficiently check user access for the modal content callback, allowing unauthorized access to the permissions...