CVE-2013-4272

The CVE concerns the BOTCHA Spam Prevention module for Drupal (7.x-1.x, 7.x-2.x, 7.x-3.x branches). When debugging is set to level 5 or 6, the module logs the content of submitted forms, enabling context-dependent users to obtain sensitive data (e.g., usernames and passwords) by reading log files...