drupal6

• Author: Miklos Vajna
• Vulnerable: 6.7-1solaria1
• Unaffected: 6.9-1solaria1

A vulnerability has been reported in the Content Translation module for Drupal, which can be exploited by malicious users to bypass certain security restrictions. The vulnerability is caused due to an unspecified error, which can be exploited to bypass normal viewing access restrictions and e.g. view the content of unpublished nodes without requiring any additional permissions to do so. Successful exploitation of this vulnerability requires the “translate content” permission.

• Bug Tracker URL: http://bugs.frugalware.org/task/3572

CVEs:

• No CVE, see http://drupal.org/node/358957.