Launchpad CVE tracker

CVE 2012-5651

Drupal 6.x before 6.27 and 7.x before 7.18 displays information for blocked users, which might allow remote attackers to obtain sensitive information by reading the search results.

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.securityfoc...
MISC: http://www.osvdb.org/8...
MISC: http://www.debian.org/...
MISC: http://www.mandriva.co...
MISC: http://www.openwall.co...
MISC: https://exchange.xforc...
MISC: http://drupal.org/SA-C...
MISC: http://drupalcode.org/...
MISC: http://drupalcode.org/...

Launchpad.net

CVE 2012-5651

Related bugs

References