The Chaos Tool Suite (ctools) module 7.x-1.x before 7.x-1.3 for Drupal does not properly restrict node access, which allows remote authenticated users with the access content permission to read restricted node titles via an autocomplete list.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ctools | Chaos_tool_suite_project | 7.x-1.0 (including) | 7.x-1.0 (including) |
| Ctools | Chaos_tool_suite_project | 7.x-1.0-alpha1 (including) | 7.x-1.0-alpha1 (including) |
| Ctools | Chaos_tool_suite_project | 7.x-1.0-alpha2 (including) | 7.x-1.0-alpha2 (including) |
| Ctools | Chaos_tool_suite_project | 7.x-1.0-alpha3 (including) | 7.x-1.0-alpha3 (including) |
| Ctools | Chaos_tool_suite_project | 7.x-1.0-alpha4 (including) | 7.x-1.0-alpha4 (including) |
| Ctools | Chaos_tool_suite_project | 7.x-1.0-beta1 (including) | 7.x-1.0-beta1 (including) |
| Ctools | Chaos_tool_suite_project | 7.x-1.0-rc1 (including) | 7.x-1.0-rc1 (including) |
| Ctools | Chaos_tool_suite_project | 7.x-1.0-rc2 (including) | 7.x-1.0-rc2 (including) |
| Ctools | Chaos_tool_suite_project | 7.x-1.1 (including) | 7.x-1.1 (including) |
| Ctools | Chaos_tool_suite_project | 7.x-1.2 (including) | 7.x-1.2 (including) |
| Ctools | Chaos_tool_suite_project | 7.x-1.x-dev (including) | 7.x-1.x-dev (including) |