3 matches found
CVE-2015-8754
The Mollom module 6.x-2.7 before 6.x-2.15 for Drupal allows remote attackers to bypass intended access restrictions and modify the mollom blacklist via unspecified vectors...
CVE-2015-8754
The vulnerability CVE-2015-8754 affects the Drupal Mollom module in versions 6.x-2.7 through 6.x-2.14, where insufficient access checks allow remote attackers to bypass access restrictions and modify the site-wide mollom blacklist. The issue arises when handling blacklist entries, enabling unauth...
Mollom - Critical - Access bypass - SA-CONTRIB-2015-168
The Mollom module allows users to protect their website from spam. As part of the spam protection, Mollom enables the website administrator to create a blacklist. When content is submitted that matches terms on the black list it will be automatically marked as spam and rejected per the site...