CVE Vulnerabilities

CVE-2008-3000

Published: Jul 03, 2008 | Modified: Nov 21, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The Aggregation module 5.x before 5.x-4.4 for Drupal, when node access modules are used, does not properly implement access control, which allows remote attackers to bypass intended restrictions.

Affected Software

Name Vendor Start Version End Version
Aggregation_module Drupal 3.0 (including) 3.0 (including)
Aggregation_module Drupal 3.1 (including) 3.1 (including)
Aggregation_module Drupal 3.2 (including) 3.2 (including)
Aggregation_module Drupal 4.0 (including) 4.0 (including)
Aggregation_module Drupal 4.1 (including) 4.1 (including)
Aggregation_module Drupal 4.2 (including) 4.2 (including)
Aggregation_module Drupal 4.3 (including) 4.3 (including)
Aggregation_module Drupal 5 (including) 5 (including)

References