Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Image Assist module 5.x-1.x before 5.x-1.8, 5.x-2.x before 2.0-alpha4, 6.x-1.x before 6.x-1.1, 6.x-2.x before 2.0-alpha4, and 6.x-3.x-dev before 2009-07-15, a module for Drupal, does not properly enforce privilege requirements for unspecified pages, which allows remote attackers to read the (1) title or (2) body of an arbitrary node via unknown vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Drupal Image Assist模块安全漏洞
Vulnerability Description
Drupal是Drupal社区所维护的一套用PHP语言开发的免费、开源的内容管理系统。Image Assist是其中的一个可以上传和插入图片到内容输入框的模块。 Drupal Image Assist模块中存在安全漏洞,该漏洞源于程序没有正确执行页面的权限要求。远程攻击者可利用该漏洞读取任意节点的标题或内容。以下版本受到影响:Drupal Image Assist模块5.x-1.8之前5.x-1.x版本,2.0-alpha4之前5.x-2.x版本,6.x-1.1之前6.x-1.x版本,2.0-alpha4
CVSS Information
N/A
Vulnerability Type
N/A