drupal6-cck

2009-03-25

Page content

Author: Miklos Vajna
Vulnerable: 6.x_2.1-1
Unaffected: 6.x_2.2-1anacreon1

A security issue has been reported in the CCK Field Privacy module for Drupal, which can be exploited by malicious people to bypass certain security restrictions. The security issue is caused due to the application not properly restricting access to certain administrative pages and can be exploited to e.g. change permissions on fields.

Bug Tracker URL: http://bugs.frugalware.org/task/3710

CVEs:

No CVE references, see http://drupal.org/node/409696