Описание
Drupal 6.x before 6.27 and 7.x before 7.18 displays information for blocked users, which might allow remote attackers to obtain sensitive information by reading the search results.
Drupal 6.x before 6.27 and 7.x before 7.18 displays information for blocked users, which might allow remote attackers to obtain sensitive information by reading the search results.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2012-5651
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80792
- http://drupal.org/SA-CORE-2012-004
- http://drupalcode.org/project/drupal.git/commitdiff/b47f95d
- http://drupalcode.org/project/drupal.git/commitdiff/da8023a
- http://www.debian.org/security/2013/dsa-2776
- http://www.mandriva.com/security/advisories?name=MDVSA-2013:074
- http://www.openwall.com/lists/oss-security/2012/12/20/1
- http://www.osvdb.org/88528
- http://www.securityfocus.com/bid/56993
EPSS
CVE ID
Связанные уязвимости
Drupal 6.x before 6.27 and 7.x before 7.18 displays information for blocked users, which might allow remote attackers to obtain sensitive information by reading the search results.
Drupal 6.x before 6.27 and 7.x before 7.18 displays information for blocked users, which might allow remote attackers to obtain sensitive information by reading the search results.
Drupal 6.x before 6.27 and 7.x before 7.18 displays information for bl ...
EPSS