Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Chaos Tool Suite (ctools) module 7.x-1.x before 7.x-1.3 for Drupal does not properly restrict node access, which allows remote authenticated users with the "access content" permission to read restricted node titles via an autocomplete list.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Drupal Chaos Tool Suite模块访问绕过漏洞
Vulnerability Description
Drupal是Drupal社区所维护的一套用PHP语言开发的免费、开源的内容管理系统。 Drupal平台的Chaos Tool Suite模块中存在访问绕过漏洞。攻击者可利用该漏洞绕过某些安全限制并执行未授权操作;这将有利于发起更进一步的攻击。Chaos Tool Suite 7.x-1.3之前的7.x-1.x版本中存在此漏洞。
CVSS Information
N/A
Vulnerability Type
N/A