Access Restriction Bypass in Secure Site Module for Drupal
CVE-2007-1033

Currently unrated

Key Information:

Vendor: Drupal
Status: Secure Site Module
Vendor: CVE Published:; 21 February 2007

Summary

A vulnerability in the Secure Site module for Drupal allows remote attackers to bypass established access controls by utilizing specially crafted URLs. This flaw can lead to unauthorized access to restricted features or data within the application, potentially compromising sensitive information and altering the expected security posture. It is crucial for users of the affected versions to address this issue promptly to maintain the integrity and confidentiality of their applications.

References

http://drupal.org/node/119619

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/32538

vdb-entryx_refsource_XF

http://www.vupen.com/english/advisories/2007/0637

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Feb 21, 2007
Vulnerability Reserved
Feb 20, 2007