CVE-2009-3122

The Ajax Table module 5.x for Drupal does not perform access control, which allows remote attackers to delete arbitrary users and nodes via unspecified vectors.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:chris_shattuck:ajaxtable:5.x-1.x-dev:*:*:*:*:*:*:*
cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2009-09-09 22:30

Updated : 2024-02-04 17:33


NVD link : CVE-2009-3122

Mitre link : CVE-2009-3122

CVE.ORG link : CVE-2009-3122


JSON object : View

Products Affected

drupal

  • drupal

chris_shattuck

  • ajaxtable
CWE
CWE-264

Permissions, Privileges, and Access Controls