CVE Vulnerabilities

CVE-2013-2122

Published: Jul 16, 2013 | Modified: Aug 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The Edit Limit module 7.x-1.x before 7.x-1.3 for Drupal does not properly restrict access to comments, which allows remote authenticated users with the edit comments permission to edit arbitrary comments of other users via unspecified vectors.

Affected Software

Name Vendor Start Version End Version
Edit_limit Quade 7.x-1.0 7.x-1.0
Edit_limit Quade 7.x-1.0 7.x-1.0
Edit_limit Quade 7.x-1.0 7.x-1.0
Edit_limit Quade 7.x-1.0 7.x-1.0
Edit_limit Quade 7.x-1.0 7.x-1.0
Edit_limit Quade 7.x-1.1 7.x-1.1
Edit_limit Quade 7.x-1.2 7.x-1.2
Edit_limit Quade 7.x-1.x 7.x-1.x

References