2 matches found
CVE-2014-9024
CVE-2014-9024 affects the Drupal contributed module Protected Pages (7.x-2.x) prior to version 7.x-2.4. The vulnerability arises because the module did not sufficiently protect variations on a protected path, allowing remote attackers to bypass password protection via a crafted path. The advisory...
SA-CONTRIB-2014-111 - Protected Pages - Password Protection Bypass
Protected Pages modules allows the administrator to secure any page in your website by password by configuring a add path and the associated password. The module did not sufficiently protect variations on the protected path. CVE identifiers issued CVE-2014-9024 Versions affected Protected Pages...