Nancy Wichmann » Announcements : Security Vulnerabilities, CVEs,
The Announcements module 6.x-1.x before 6.x-1.5 for Drupal allows remote authenticated users with the "access announcements" permission to bypass node access restrictions and possibly have other unspecified impact.
Max CVSS
3.5
EPSS Score
0.16%
Published
2012-10-31
Updated
2013-03-02
1 vulnerabilities found