CVE-2012-1590
01.10.2012, 00:55
The forum list in Drupal 7.x before 7.14 does not properly check user permissions for unpublished forum posts, which allows remote authenticated users to obtain sensitive information such as the post title via the forum overview page.Enginsight
| Vendor | Product | Version |
|---|---|---|
| drupal | drupal | 7.0 |
| drupal | drupal | 7.0:alpha1 |
| drupal | drupal | 7.0:alpha2 |
| drupal | drupal | 7.0:alpha3 |
| drupal | drupal | 7.0:alpha4 |
| drupal | drupal | 7.0:alpha5 |
| drupal | drupal | 7.0:alpha6 |
| drupal | drupal | 7.0:alpha7 |
| drupal | drupal | 7.0:beta1 |
| drupal | drupal | 7.0:beta2 |
| drupal | drupal | 7.0:beta3 |
| drupal | drupal | 7.0:dev |
| drupal | drupal | 7.0:rc1 |
| drupal | drupal | 7.0:rc2 |
| drupal | drupal | 7.0:rc3 |
| drupal | drupal | 7.0:rc4 |
| drupal | drupal | 7.1 |
| drupal | drupal | 7.2 |
| drupal | drupal | 7.3 |
| drupal | drupal | 7.4 |
| drupal | drupal | 7.5 |
| drupal | drupal | 7.6 |
| drupal | drupal | 7.7 |
| drupal | drupal | 7.8 |
| drupal | drupal | 7.9 |
| drupal | drupal | 7.10 |
| drupal | drupal | 7.11 |
| drupal | drupal | 7.12 |
| drupal | drupal | 7.13 |
| drupal | drupal | 7.x-dev:x |
𝑥
= Vulnerable software versions
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| drupal5 |
| ||||||||||||||||||||||||||||||
| drupal6 |
| ||||||||||||||||||||||||||||||
| drupal7 |
|
Common Weakness Enumeration
References