RSS   Vulnerabilities for 'Twilio'   RSS

2014-11-20
 
CVE-2014-9023

 

 
The Twilio module 7.x-1.x before 7.x-1.9 for Drupal does not properly restrict access to the Twilio administration pages, which allows remote authenticated users to read and modify authentication tokens by leveraging the "access administration pages" Drupal permission.

 


Copyright 2024, cxsecurity.com

 

Back to Top