Security Advisory

CVE-2012-2704

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-08-31 20:00:00

Last updated 2024-08-06 19:42:31

Assigner redhat

State PUBLISHED

Description

The Advertisement module 6.x-2.x before 6.x-2.3 for Drupal does not properly restrict access to debug information, which allows remote attackers to obtain sensitive site configuration information that is specified by the $conf variable in settings.php.

← Browse all CVEs View on cve.org ↗