Lucene search
K

4 matches found

CVE
CVE
added 2020/01/30 8:40 p.m.94 views

CVE-2013-4187

The CVE-2013-4187 entry concerns the Drupal Flippy module (7.x-1.x) prior to 7.x-1.2, where access restrictions for nodes are not properly enforced. This allows remote authenticated users with content-access permissions to read a link or alias to a restricted node, effectively bypassing node visi...

6.5CVSS6.1AI score0.01451EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2019/11/25 5:15 p.m.23 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2013-4187. Reason: This candidate is a duplicate of CVE-2013-4187. Notes: All CVE users should reference CVE-2013-4187 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

6.5AI score0.01451EPSS
Exploits0
CVE
CVE
added 2019/11/25 4:32 p.m.31 views

CVE-2013-4224

The vulnerability tracked as CVE-2013-4187 (CVE-2013-4224 is a duplicate) affects the Flippy module for Drupal 7.x-1.x prior to 7.x-1.2. The module does not properly restrict access to nodes when generating previous/next links, permitting remote authenticated users with the permission to access c...

6.5AI score
Exploits0
Drupal
Drupal
added 2013/07/31 12:0 a.m.24 views

SA-CONTRIB-2013-061 - Flippy - Access Bypass

This module enables you to generate previous/next links for content types. The module doesn't sufficiently enforce node access when generating previous/next links. A user may be presented with a link including alias if one is set but will not be able to view the node content. This vulnerability i...

6.5CVSS6.2AI score0.01451EPSS
Exploits0References10
Rows per page
Query Builder