CVE-2007-3689
Published Jul 11, 2007
Last updated 7 years ago
Overview
- Description
- The Print module before 4.7-1.0 and 5.x before 5.x-1.2 for Drupal allows remote attackers to read restricted posts in (1) Organic Groups, (2) Taxonomy Access Control, (3) Taxonomy Access Lite, and other unspecified node access modules, via modified URL arguments.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.8
- Impact score
- 6.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:N/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[ { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:a:drupal:print_module:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5000E29D-E826-4C77-B141-B8F483D837AA", "versionEndIncluding": "4.7" }, { "criteria": "cpe:2.3:a:drupal:print_module:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "54CC380C-A5C4-4B72-B0E4-201CBD4B238E", "versionEndIncluding": "5.x-1.1" } ], "operator": "OR" } ] } ]