CVE Vulnerabilities

CVE-2013-4498

Published: May 17, 2014 | Modified: May 19, 2014
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:N/AC:H/Au:S/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

The Spaces OG submodule in the Spaces module 6.x-3.x before 6.x-3.7 for Drupal does not properly delete organic group group spaces content when using the option to move to a new group, which causes the content to be orphaned and allows remote authenticated users with the access content permission to obtain sensitive information via vectors involving a rebuild access for the site or content.

Affected Software

Name Vendor Start Version End Version
Spaces Florian_weber 6.x-3.0 6.x-3.0
Spaces Florian_weber 6.x-3.0 6.x-3.0
Spaces Florian_weber 6.x-3.0 6.x-3.0
Spaces Florian_weber 6.x-3.0 6.x-3.0
Spaces Florian_weber 6.x-3.0 6.x-3.0
Spaces Florian_weber 6.x-3.0 6.x-3.0
Spaces Florian_weber 6.x-3.0 6.x-3.0
Spaces Florian_weber 6.x-3.0 6.x-3.0
Spaces Florian_weber 6.x-3.0 6.x-3.0
Spaces Florian_weber 6.x-3.0 6.x-3.0
Spaces Florian_weber 6.x-3.0 6.x-3.0
Spaces Florian_weber 6.x-3.1 6.x-3.1
Spaces Florian_weber 6.x-3.2 6.x-3.2
Spaces Florian_weber 6.x-3.3 6.x-3.3
Spaces Florian_weber 6.x-3.4 6.x-3.4
Spaces Florian_weber 6.x-3.5 6.x-3.5
Spaces Florian_weber 6.x-3.6 6.x-3.6

References