RSS   Vulnerabilities for 'Edit limit'   RSS

2013-07-16
 
CVE-2013-2122

CWE-264
 

 
The Edit Limit module 7.x-1.x before 7.x-1.3 for Drupal does not properly restrict access to comments, which allows remote authenticated users with the "edit comments" permission to edit arbitrary comments of other users via unspecified vectors.

 


Copyright 2024, cxsecurity.com

 

Back to Top