CVE-2015-5509 | Vulnerability Database | Aqua Security

The Administration Views module 7.x-1.x before 7.x-1.4 for Drupal, when used with other unspecified modules, does not properly grant access to administration pages, which allows remote administrators to bypass intended restrictions via unspecified vectors.

Affected Software

Name	Vendor	Start Version	End Version
Administration_views	Administration_views_project	7.x-1.0 (including)	7.x-1.0 (including)
Administration_views	Administration_views_project	7.x-1.0-rc1 (including)	7.x-1.0-rc1 (including)
Administration_views	Administration_views_project	7.x-1.1 (including)	7.x-1.1 (including)
Administration_views	Administration_views_project	7.x-1.2 (including)	7.x-1.2 (including)
Administration_views	Administration_views_project	7.x-1.x-dev (including)	7.x-1.x-dev (including)

References

http://www.openwall.com/lists/oss-security/2015/07/04/4
http://www.securityfocus.com/bid/75278
https://www.drupal.org/node/2430043
https://www.drupal.org/node/2507645

NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-5509
CWE	https://cwe.mitre.org/data/definitions/264.html