The freelinking module for Drupal, as used in the Freelinking for Case Tracker module, does not properly check access permissions for (1) nodes or (2) users, which allows remote attackers to obtain sensitive information via a crafted link.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2014-08-06T18:00:00
Updated: 2024-08-06T11:34:37.531Z
Reserved: 2014-08-06T00:00:00
Link: CVE-2014-5179
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-08-06T18:55:06.277
Modified: 2017-09-08T01:29:04.260
Link: CVE-2014-5179
Redhat
No data.