Security Advisory

CVE-2009-4526

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-12-31 19:00:00

Last updated 2024-09-16 16:52:49

Assigner mitre

State PUBLISHED

Description

The Send by e-mail sub-module in the Print (aka Printer, e-mail and PDF versions) module 5.x before 5.x-4.9 and 6.x before 6.x-1.9, a module for Drupal, does not properly enforce privilege requirements, which allows remote attackers to read page titles by requesting a "Send to friend" form.

← Browse all CVEs View on cve.org ↗