PT-2015-7727 · Drupal · Monster Menus

Dan Wilga

Published

2015-11-09

Updated

2025-08-27

CVE-2015-8095

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Monster Menus module versions 7.x-1.21 through 7.x-1.23

Description The issue concerns the recycle bin feature in the Monster Menus module for Drupal, which fails to properly remove nodes from view. This allows remote attackers to obtain sensitive information via an unspecified URL pattern.

Recommendations For Monster Menus module versions 7.x-1.21 through 7.x-1.23, update to version 7.x-1.24 or later to resolve the issue.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2015-8095

Affected Products

Monster Menus

PT-2015-7727 · Drupal · Monster Menus

CVE-2015-8095

Weakness Enumeration

Related Identifiers

Affected Products

References · 4