The Quick Tabs module 6.x-2.x before 6.x-2.2, 6.x-3.x before 6.x-3.2, and 7.x-3.x before 7.x-3.6 for Drupal does not properly check block permissions, which allows remote attackers to obtain sensitive information by reading a Quick Tab.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Quicktabs | Quick_tabs_module_project | 6.x-3.x | 6.x-3.x |
Quicktabs | Quick_tabs_module_project | 6.x-3.0 | 6.x-3.0 |
Quicktabs | Quick_tabs_module_project | 6.x-3.0 | 6.x-3.0 |
Quicktabs | Quick_tabs_module_project | 6.x-3.1 | 6.x-3.1 |
Quicktabs | Quick_tabs_module_project | 6.x-3.0 | 6.x-3.0 |