2 matches found
CVE-2013-4498
The CVE-2013-4498 vulnerability affects the Drupal Spaces module (Spaces OG submodule, 6.x-3.x) prior to 6.x-3.7. Root cause: when moving content to a new group, Spaces OG fails to delete Organic Group group spaces content, leaving it orphaned. Impact: remote authenticated users with the "access ...
SA-CONTRIB-2013-081 - Spaces - Access bypass
This module enables you to make configuration options generally available only at the sitewide level to be configurable and overridden by individual "spaces" on a Drupal site. The spaces submodule, Spaces OG, doesn't properly handle deleting of organic group group spaces when the option to move t...