Drupal Outline Designer Module 'outline_designer.module' Security Bypass Vulnerability
BID:30066
Info
Drupal Outline Designer Module 'outline_designer.module' Security Bypass Vulnerability
| Bugtraq ID: | 30066 |
| Class: | Access Validation Error |
| CVE: |
CVE-2008-3096 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 02 2008 12:00AM |
| Updated: | May 07 2015 05:27PM |
| Credit: | Drupal |
| Vulnerable: |
Drupal Outline designer 5.x-1.3 |
| Not Vulnerable: |
Drupal Outline designer 5.x-1.4 |
Discussion
Drupal Outline Designer Module 'outline_designer.module' Security Bypass Vulnerability
The Outline Designer module for Drupal is prone to a vulnerability that may allow unauthorized users to become authenticated as the owner of the viewed content item.
This issue affects versions prior to Outline Designer 5.x-1.4.
The Outline Designer module for Drupal is prone to a vulnerability that may allow unauthorized users to become authenticated as the owner of the viewed content item.
This issue affects versions prior to Outline Designer 5.x-1.4.
Exploit / POC
Drupal Outline Designer Module 'outline_designer.module' Security Bypass Vulnerability
Attackers can exploit this issue via a browser.
Attackers can exploit this issue via a browser.
Solution / Fix
Drupal Outline Designer Module 'outline_designer.module' Security Bypass Vulnerability
Solution:
The vendor has released a fix. Please see the references for more information.
Solution:
The vendor has released a fix. Please see the references for more information.
References
Drupal Outline Designer Module 'outline_designer.module' Security Bypass Vulnerability
References:
References: