Drupal Multiple vulnerabilities

Last Update Date: 19 Jun 2015 09:44 Release Date: 19 Jun 2015 3815 Views

RISK: Medium Risk

Medium Risk

TYPE: Servers - Web Servers

TYPE: Web Servers

Multiple vulnerabilities have been identified in Druple OpenID module that allows malicious users to

log in as other users on the site, redirect users to third party sites and expose private user contents.

Impact

  • Elevation of Privilege
  • Information Disclosure

System / Technologies affected

  • Drupal core 6.x versions prior to 6.36
  • Drupal core 7.x versions prior to 7.38

 

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • Update to version 6.36 or 7.38.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Samsung Phones Remote Code Execution Vulnerability

18 Jun 2015 4237 Views

Next

Apple OS X Multiple Vulnerabilities

22 Jun 2015 3738 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY