RSS   Vulnerabilities for 'Entityform block'   RSS

2015-08-18
 
CVE-2015-5493

 

 
The Entityform Block module 7.x-1.x before 7.x-1.3 for Drupal does not properly check permissions when a form is locked to a role, which allows remote attackers to obtain access to certain entityforms via unspecified vectors.

 


Copyright 2024, cxsecurity.com

 

Back to Top