RSS   Vulnerabilities for 'Commons'   RSS

2013-07-16
 
CVE-2013-1908

CWE-264
 

 
The Commons Wikis module before 7.x-3.1 for Drupal, as used in the Commons module before 7.x-3.1, does not properly restrict access to groups, which allows remote attackers to post arbitrary content to groups via unspecified vectors.

 
 
CVE-2013-1907

CWE-264
 

 
The Commons Group module before 7.x-3.1 for Drupal, as used in the Commons module before 7.x-3.1, does not properly restrict access to groups, which allows remote attackers to post arbitrary content to groups via unspecified vectors.

 
2012-10-31
 
CVE-2012-4483

CWE-264
 

 
The commons_discussion_views_default_views function in modules/features/commons_discussion/commons_discussion.views_default.inc in the Drupal Commons module 6.x-2.x before 6.x-2.8 for Drupal does not properly enforce intended node access restrictions, which might allow remote attackers to obtain sensitive information via the recent comments listing.

 

 >>> Vendor: Acquia 4 Products
Commons
Commons group
Mollom
Mautic


Copyright 2024, cxsecurity.com

 

Back to Top