Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The mm_webform submodule in the Monster Menus module 6.x-6.x before 6.x-6.61 and 7.x-1.x before 7.x-1.13 for Drupal does not properly restrict access to webform submissions, which allows remote authenticated users with the "Who can read data submitted to this webform" permission to delete arbitrary submissions via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Drupal Monster Menus模块访问绕过漏洞
Vulnerability Description
Drupal是Drupal社区所维护的一套用PHP语言开发的免费、开源的内容管理系统。Monster Menus是其中的一个用于开发Drupal 6和Drupal 7版本的模块。 Drupal的Monster Menus模块中的mm_webform子模块中存在安全绕过漏洞,该漏洞源于程序没有正确的限制对网页表单提交的访问。远程经过授权并具有读此网页表单提交的数据权限攻击者可利用该漏洞,删除任意提交的数据。以下版本受到影响:Monster Menus模块6.x-6.61之前的6.x-6.x版本,Monste
CVSS Information
N/A
Vulnerability Type
N/A