CVEs affecting projects tracked on Release Alert, from NVD & OSV.
CVE-2012-1590 — MEDIUM severity vulnerability | Release Alert
CVE-2012-1590
4
MEDIUMCVSS v2
Published
October 1, 2012
Affected
2 projects
Assigned by
Red Hat
Severity scale
010
Description
The forum list in Drupal 7.x before 7.14 does not properly check user permissions for unpublished forum posts, which allows remote authenticated users to obtain sensitive information such as the post title via the forum overview page.
GitHubVerbatim mirror of the git.drupal.org repository for Drupal core. Please see the https://github.com/drupal/drupal#contributing. PRs are not accepted on GitHub.