Drupal Project and Project Issue Tracking Modules Insecure Permissions Security Bypass Vulnerability

Bugtraq ID: 25364
Class: Access Validation Error
CVE: CVE-2007-4436
Remote: Yes
Local: No
Published: Aug 20 2007 12:00AM
Updated: May 07 2015 05:35PM
Credit: Derek Wright of the Drupal security team is credited with the discovery of this vulnerability.
Vulnerable: Drupal Project issue tracking 4.7 2.2
Drupal Project issue tracking 4.7 1.2
Drupal Project issue tracking 5.0-0.2beta
Drupal Project issue tracking 5.0-0.1beta
Drupal Project issue tracking 5.0-0.1
Drupal Project issue tracking 4.7.0-2.3
Drupal Project issue tracking 4.7.0-2.1
Drupal Project issue tracking 4.7.0-2.0
Drupal Project issue tracking 4.7.0-1.3
Drupal Project issue tracking 4.7.0-1.1
Drupal Project issue tracking 4.7.0-1.0
Drupal Project issue tracking 4.7.0
Drupal Project 5.0 1-beta
Drupal Project 4.7 2.2
Drupal Project 4.7 2-2
Drupal Project 4.7 1.2
Drupal Project 5.0-0.1
Drupal Project 4.7.0-2.1
Drupal Project 4.7.0-2.0
Drupal Project 4.7.0-1.1
Drupal Project 4.7.0-1.0
Drupal Project 4.7.0
Not Vulnerable: Drupal Project issue tracking 5.0-1.0
Drupal Project issue tracking 4.7.0-2.4
Drupal Project issue tracking 4.7.0-1.4
Drupal Project 5.0-1.0
Drupal Project 4.7.0-2.3
Drupal Project 4.7.0-1.3


 

Privacy Statement
Copyright 2010, SecurityFocus