Security Advisory

CVE-2014-9022

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-11-20 17:00:00

Last updated 2024-09-16 22:46:00

Assigner mitre

State PUBLISHED

Description

The Webform Component Roles module 6.x-1.x before 6.x-1.8 and 7.x-1.x before 7.x-1.8 for Drupal allows remote attackers to bypass the "disabled" restriction and modify read-only components via a crafted form.

← Browse all CVEs View on cve.org ↗