CVE-2014-9154
The CVE-2014-9154 entry concerns the Drupal Notify module (7.x-1.x) prior to version 7.x-1.1. The vulnerability arises because the module does not properly restrict access to new or modified nodes and their fields, enabling remote authenticated users to view node titles, teasers, and fields by re...