Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The RESTWS Basic Auth submodule in the RESTful Web Services module 7.x-1.x before 7.x-1.5 and 7.x-2.x before 7.x-2.3 for Drupal caches pages for authenticated requests, which allows remote attackers to obtain sensitive information via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Drupal RESTful Web Services模块信息泄露漏洞
Vulnerability Description
Drupal是Drupal社区所维护的一套用PHP语言开发的免费、开源的内容管理系统。RESTful Web Services(RESTWS,又名RESTful Web API)是其中的一个使用HTTP并遵循REST原则的Web服务模块。 Drupal RESTful Web Services模块7.x-1.5之前7.x-1.x版本和7.x-2.3之前7.x-2.x版本中的RESTWS Basic Auth子模块存在安全漏洞,该漏洞源于程序缓存请求(已经过身份验证)的页面。远程攻击者可利用该漏洞获取敏感信
CVSS Information
N/A
Vulnerability Type
N/A