CVE Vulnerability

CVE-2007-3689

The Print module before 4.7-1.0 and 5.x before 5.x-1.2 for Drupal allows remote attackers to read restricted posts in (1) Organic Groups, (2) Taxonomy Access Control, (3) Taxonomy Access Lite, and other unspecified node access modules, via modified URL arguments.

7.8 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 6.9

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact NONE

Availability Impact NONE

Scope

References
Link Resource
http://drupal.org/node/152804 Patch
http://drupal.org/node/158029 Patch
http://drupal.org/node/158032 Patch
http://www.securityfocus.com/bid/24862
http://secunia.com/advisories/25978
http://osvdb.org/37897
http://www.vupen.com/english/advisories/2007/2470
https://exchange.xforce.ibmcloud.com/vulnerabilities/35314
Configurations

Configuration 1

cpe:2.3:a:drupal:print_module:*:*:*:*:*:*:*:*
cpe:2.3:a:drupal:print_module:*:*:*:*:*:*:*:*
Information

Published : 2007-07-11 05:30

Updated : 2017-07-29 01:32

NVD link : CVE-2007-3689

Mitre link : CVE-2007-3689

Products Affected
No products.
CWE
NVD-CWE-Other