oss-sec mailing list archives
CVE request: CKEditor module for Drupal access bypass SA-CONTRIB-2011-054
From: Henri Salo <henri () nerv fi>
Date: Tue, 4 Jun 2013 19:07:54 +0300
This does not seem to have CVE yet. Please assign. Drupal guys could you confirm, thanks. Advisory ID: DRUPAL-SA-CONTRIB-2011-054 Project: CKEditor - WYSIWYG HTML editor (third-party module) Version: 7.x Date: 2011-November-09 Security risk: Critical Exploitable from: Remote Vulnerability: Access bypass Versions affected: CKEditor 7.x-1.4 version only Solution: Upgrade to CKEditor 7.x-1.5 https://drupal.org/node/1337006 http://osvdb.org/77005 http://secunia.com/advisories/46772/ --- Henri Salo
Attachment:
signature.asc
Description: Digital signature
Current thread:
- CVE request: CKEditor module for Drupal access bypass SA-CONTRIB-2011-054 Henri Salo (Jun 04)
- Re: CVE request: CKEditor module for Drupal access bypass SA-CONTRIB-2011-054 Kurt Seifried (Jun 04)