Drupal · Drupal · CVE-2015-5496
**Name of the Vulnerable Software and Affected Versions**
Drupal pass2pdf module (affected versions not specified)
**Description**
The issue concerns the pass2pdf module for Drupal, where it fails to restrict access to generated PDF files. This allows remote attackers to obtain user passwords through unspecified means.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.