Security Advisory

CVE-2012-1590

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-10-01 00:00:00

Last updated 2024-08-06 19:01:02

Assigner redhat

State PUBLISHED

Description

The forum list in Drupal 7.x before 7.14 does not properly check user permissions for unpublished forum posts, which allows remote authenticated users to obtain sensitive information such as the post title via the forum overview page.

← Browse all CVEs View on cve.org ↗