CVE Vulnerabilities

CVE-2013-0257

Published: Mar 27, 2013 | Modified: Apr 11, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu
root.io minimus.io echohq.com

The email2image module 6.x-1.x and 6.x-2.x for Drupal does not properly restrict access to nodes, which allows remote attackers to read images of user email addresses and email fields.

Affected Software

Name Vendor Start Version End Version
Email2image David_alkire 6.x-1.x (including) 6.x-1.x (including)
Email2image David_alkire 6.x-2.x (including) 6.x-2.x (including)

References