The Fast Permissions Administration module 6.x-2.x before 6.x-2.5 and 7.x-2.x before 7.x-2.3 for Drupal does not properly restrict access to the modal content callback, which allows remote attackers to obtain unspecified access to the permissions edit form.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2013/07/06/3 | |
https://drupal.org/node/2028417 | Patch |
https://drupal.org/node/2028421 | Patch |
https://drupal.org/node/2028813 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2022-10-03T16:15:02
Updated: 2022-10-03T16:15:02
Reserved: 2022-10-03T00:00:00
Link: CVE-2013-2247
JSON object: View
NVD Information
Status : Analyzed
Published: 2013-08-28T22:55:05.670
Modified: 2013-10-07T17:45:25.033
Link: CVE-2013-2247
JSON object: View
Redhat Information
No data.
CWE