2 matches found
The vulnerability of the social_group_flexible_group configuration in the Drupal Open Social CMS system allows a hacker to gain unauthorized access to protected information.
The vulnerability of the socialgroupflexiblegroup configuration in the Drupal Open Social CMS system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...
Open Social - Moderately critical - Information Disclosure - SA-CONTRIB-2024-005
Open Social is a Drupal distribution for online communities. The included optional socialgroupflexiblegroup module doesn't sufficiently validate group updates. The lack of validation makes it possible to have content inside the group changing it's visibility, which could lead to that content bein...