CVE-2009-4520
The vulnerability CVE-2009-4520 affects the Drupal CCK Comment Reference module. Affected versions are 5.x before 5.x-1.2 and 6.x before 6.x-1.3. The issue allows remote attackers to bypass access controls and read comments by abusing the module’s autocomplete path. Remediation requires upgrading...