CVE-2013-4226 (authenticated_user_page_caching)

Leave a reply

The Authenticated User Page Caching (Authcache) module 7.x-1.x before 7.x-1.5 for Drupal does not properly restrict access to cached pages, which allows remote attackers with the same role-combination as the superuser to obtain sensitive information via the cached pages of the superuser.

View Full Alert

Related Posts

  • CVE-2013-0739 (chamilo)

    Chamilo 1.9.4 has XSS due to improper validation of user-supplied input by the chat.php script. View Full Alert

  • CVE-2013-1938

    Zimbra 2013 has XSS in aspell.php View Full Alert

  • CVE-2013-7109

    OpenStack Swift as of 2013-12-15 mishandles PYTHON_EGG_CACHE View Full Alert

Leave a Reply