Bugtraq mailing list archives
Re: Information disclosure vulnerability in Drupal's Realname User Reference Widget contributed module (version 6.x-1.0)
From: mori () diasporan net
Date: 27 Feb 2010 23:34:44 -0000
We have determined that Realname module and Realname userreference module do not share information that should be hidden. After all, both account->name and realname fields are _intended_ for display. Therefore this is not considered a vulnerability. Mori Sugimoto (http://drupal.org/user/82971 ) Drupal Security Team Coordinator
Current thread:
- Re: Information disclosure vulnerability in Drupal's Realname User Reference Widget contributed module (version 6.x-1.0) mori (Mar 01)