CVE-2013-5965

CVE-2013-5965 : The Drupal module Node View Permissions (7.x-1.x) before 7.x-1.2 does not properly implement hook_query_alter, which may allow remote attackers to read a node listing and obtain sensitive information. Affected product: Drupal module Node View Permissions (7.x-1.x series). Root cau...

CVE-2026-8491

CVE-2026-8491 involves an improper check in the Drupal Node View Permissions module that permits forceful browsing. Affected are Node View Permissions 0.0.0–1.6.x and 2.0.0–2.0.0, where cancelled users’ content reassigned to anonymous users could be exposed. Remediation: upgrade to 1.7.0 (for 0.0...