RSS   Vulnerabilities for 'Listhandler'   RSS

2012-11-30
 
CVE-2012-4470

CWE-264
 

 
The Listhandler module 6.x-1.x before 6.x-1.1 for Drupal does not properly check permissions when importing emails, which allows remote comment authors to bypass access restrictions and possibly have other unspecified impact.

 


Copyright 2024, cxsecurity.com

 

Back to Top