Vulnerabilities (CVE)

Filtered by vendor Kristof De Jaeger Subscribe
Filtered by product Commentreference
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-4520 2 Drupal, Kristof De Jaeger 2 Drupal, Commentreference 2024-11-21 5.0 MEDIUM N/A
The CCK Comment Reference module 5.x before 5.x-1.2 and 6.x before 6.x-1.3, a module for Drupal, allows remote attackers to bypass intended access restrictions and read comments by using the autocomplete path.