7 matches found
EUVD-2014-5077
Malware in sbrugna...
Drupal Freelinking module < 4.0.1 - Authenticated Sensitive Data Exposure vulnerability
Authenticated Sensitive Data Exposure vulnerability discovered by Matthew Radcliffe in WordPress Module Freelinking versions 4.0.1...
Freelinking - Moderately critical - Information Disclosure - SA-CONTRIB-2024-034
This module enables you to configure a wiki-like input filter that allows users to create links to site and external content. The module doesn't sufficiently check if a user has access to some URLs before rendering them as links. This vulnerability is mitigated by the fact that an attacker must...
CVE-2014-5179
The freelinking module for Drupal, as used in the Freelinking for Case Tracker module, does not properly check access permissions for 1 nodes or 2 users, which allows remote attackers to obtain sensitive information via a crafted link...
Design/Logic Flaw
The freelinking module for Drupal, as used in the Freelinking for Case Tracker module, does not properly check access permissions for 1 nodes or 2 users, which allows remote attackers to obtain sensitive information via a crafted link...
CVE-2014-5179
The Drupal freelinking and Freelinking Case Tracker contributed modules contain an access control bypass flaw: the modules do not sufficiently check permissions when displaying links to nodes and users, enabling remote retrieval of sensitive information via crafted links. This affects all version...
CVE-2014-5179
The freelinking module for Drupal, as used in the Freelinking for Case Tracker module, does not properly check access permissions for 1 nodes or 2 users, which allows remote attackers to obtain sensitive information via a crafted link...