CVE Vulnerabilities

CVE-2012-2721

Published: Jun 27, 2012 | Modified: Aug 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The default views in the Organic Groups (OG) module 6.x-2.x before 6.x-2.4 for Drupal do not properly check permissions when all users have the access content permission removed, which allows remote attackers to bypass access restrictions and possibly have other unspecified impact.

Affected Software

Name Vendor Start Version End Version
Organic_groups Moshe_weitzman 6.x-2.0 6.x-2.0
Organic_groups Moshe_weitzman 6.x-2.0 6.x-2.0
Organic_groups Moshe_weitzman 6.x-2.0 6.x-2.0
Organic_groups Moshe_weitzman 6.x-2.0 6.x-2.0
Organic_groups Moshe_weitzman 6.x-2.1 6.x-2.1
Organic_groups Moshe_weitzman 6.x-2.2 6.x-2.2
Organic_groups Moshe_weitzman 6.x-2.3 6.x-2.3
Organic_groups Moshe_weitzman 6.x-2.x 6.x-2.x

References