Skip to main content

Drupal Multiple vulnerabilities

Last Update Date: 23 Jan 2014 Release Date: 22 Jan 2014 3726 Views

RISK: Medium Risk

TYPE: Servers - Web Servers

TYPE: Web Servers

Multiple vulnerabilities have been identified in Drupal, which can be exploited by malicious users to bypass certain security restrictions and hijack another user's account.


Impact

  • Security Restriction Bypass
  • Information Disclosure

System / Technologies affected

  • Versions 6.x prior to 6.30 and 7.x prior to 7.26

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to a fixed version.

Vulnerability Identifier


Source


Related Link