CVE-2012-2303

Name of the Vulnerable Software and Affected Versions Drupal Spaces module versions 6.x-3.x before 6.x-3.4

Description The issue allows remote attackers to obtain sensitive information and possibly have other impacts via unspecified vectors to the Spaces or Spaces OG module, due to the failure to enforce permissions on non-object pages.

Recommendations For versions prior to 6.x-3.4, update to version 6.x-3.4 or later to resolve the issue.