Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Forward module 6.x-1.x before 6.x-1.21 and 7.x-1.x before 7.x-1.3 for Drupal does not properly enforce permissions for (1) Recent forwards, (2) Most forwarded, or (3) Dynamic blocks, which allows remote attackers to obtain node titles via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Drupal ‘Forward’ 模块多个安全绕过漏洞
Vulnerability Description
Drupal是Drupal社区所维护的一套用PHP语言开发的免费、开源的内容管理系统。 Drupal的Forward模块6.x-1.21版本之前的6.x-1.x版本与7.x-1.3版本之前的7.x-1.x版本中存在多个安全绕过漏洞,该漏洞源于未正确执行(1)最近转发(2)多数转发,或者(3)动态块。远程攻击者可利用该漏洞借助未明向量获取节点标题。
CVSS Information
N/A
Vulnerability Type
N/A