|
|
Log in / Subscribe / Register

drupal panels: multiple vulnerabilities

Package(s):drupal7-panels CVE #(s):
Created:September 22, 2016 Updated:September 28, 2016
Description: The Drupal "Panels" contrib module suffers from multiple "critical" vulnerabilities. "Much of the functionality to modify these panels rely on backend routes that call administrative forms. These forms did not provide any access checks, or site specific encoded urls. This can allow an attacker to guess the backend url as an anonymous user and see data loaded for the form."
Alerts:
Fedora FEDORA-2016-703a5e621c drupal7-panels 2016-09-21
Fedora FEDORA-2016-c01e32e071 drupal7-panels 2016-09-22
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds