PT-2015-7727 · Drupal · Monster Menus
Dan Wilga
·
Publicado
2015-11-09
·
Atualizado
2025-08-27
·
CVE-2015-8095
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Monster Menus module versions 7.x-1.21 through 7.x-1.23
Description
The issue concerns the recycle bin feature in the Monster Menus module for Drupal, which fails to properly remove nodes from view. This allows remote attackers to obtain sensitive information via an unspecified URL pattern.
Recommendations
For Monster Menus module versions 7.x-1.21 through 7.x-1.23, update to version 7.x-1.24 or later to resolve the issue.
Correção
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Monster Menus