CVE-2014-1476
Published: 24 January 2014
The Taxonomy module in Drupal 7.x before 7.26, when upgraded from an earlier version of Drupal, does not properly restrict access to unpublished content, which allows remote authenticated users to obtain sensitive information via a listing page.
Priority
Status
Package | Release | Status |
---|---|---|
drupal7 Launchpad, Ubuntu, Debian |
lucid |
Does not exist
|
precise |
Ignored
(end of life)
|
|
quantal |
Ignored
(end of life)
|
|
raring |
Ignored
(end of life)
|
|
saucy |
Ignored
(end of life)
|
|
trusty |
Not vulnerable
(7.26-1)
|
|
upstream |
Released
(7.26-1)
|
|
utopic |
Not vulnerable
(7.26-1)
|
|
vivid |
Not vulnerable
(7.26-1)
|
|
wily |
Not vulnerable
(7.26-1)
|
|
xenial |
Not vulnerable
(7.26-1)
|
|
yakkety |
Not vulnerable
(7.26-1)
|
|
zesty |
Not vulnerable
(7.26-1)
|