Drupal Open Atrium Module Information Disclosure Vulnerability



The Open Atrium module for Drupal is prone to an information-disclosure vulnerability.

Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks.

The following products are affected:

Open Atrium distribution 7.x-2.x versions prior to 7.x-2.615.
Open Atrium Core 7.x-2.x versions prior to 7.x-2.84.
OA Comment 7.x-2.x versions prior to 7.x-2.14.

Information

Bugtraq ID: 97646
Class: Design Error
CVE:
Remote: Yes
Local: No
Published: Apr 12 2017 12:00AM
Updated: Apr 14 2017 01:06PM
Credit: Mike Potter
Vulnerable: Drupal Open Atrium Core 7.x-2.66
Drupal Open Atrium Core 7.x-2.65
Drupal Open Atrium Core 7.x-2.64
Drupal Open Atrium Core 7.x-2.63
Drupal Open Atrium Core 7.x-2.62
Drupal Open Atrium Core 7.x-2.61
Drupal Open Atrium Core 7.x-2.60
Drupal Open Atrium Core 7.x-2.59
Drupal Open Atrium Core 7.x-2.58
Drupal Open Atrium Core 7.x-2.57
Drupal Open Atrium Core 7.x-2.56
Drupal Open Atrium Core 7.x-2.55
Drupal Open Atrium Core 7.x-2.54
Drupal Open Atrium Core 7.x-2.53
Drupal Open Atrium Core 7.x-2.52
Drupal Open Atrium Core 7.x-2.51
Drupal Open Atrium Core 7.x-2.50
Drupal Open Atrium Core 7.x-2.49
Drupal Open Atrium Core 7.x-2.48
Drupal Open Atrium Core 7.x-2.47
Drupal Open Atrium Core 7.x-2.46
Drupal Open Atrium Core 7.x-2.45
Drupal Open Atrium Core 7.x-2.44
Drupal Open Atrium Core 7.x-2.43
Drupal Open Atrium Core 7.x-2.42
Drupal Open Atrium Core 7.x-2.41
Drupal Open Atrium Core 7.x-2.40
Drupal Open Atrium Core 7.x-2.39
Drupal Open Atrium Core 7.x-2.38
Drupal Open Atrium Core 7.x-2.37
Drupal Open Atrium Core 7.x-2.36
Drupal Open Atrium Core 7.x-2.35
Drupal Open Atrium Core 7.x-2.34
Drupal Open Atrium Core 7.x-2.33
Drupal Open Atrium Core 7.x-2.32
Drupal Open Atrium Core 7.x-2.31
Drupal Open Atrium Core 7.x-2.30
Drupal Open Atrium Core 7.x-2.29
Drupal Open Atrium Core 7.x-2.28
Drupal Open Atrium Core 7.x-2.27
Drupal Open Atrium Core 7.x-2.26
Drupal Open Atrium Core 7.x-2.25
Drupal Open Atrium Core 7.x-2.24
Drupal Open Atrium Core 7.x-2.23
Drupal Open Atrium Core 7.x-2.22
Drupal Open Atrium Core 7.x-2.21
Drupal Open Atrium Core 7.x-2.19
Drupal Open Atrium Core 7.x-2.18
Drupal Open Atrium Core 7.x-2.16
Drupal Open Atrium Core 7.x-2.15
Drupal Open Atrium Core 7.x-2.14
Drupal Open Atrium Core 7.x-2.13
Drupal Open Atrium Core 7.x-2.12
Drupal Open Atrium Core 7.x-2.11
Drupal Open Atrium Core 7.x-2.10
Drupal Open Atrium Core 7.x-2.08
Drupal Open Atrium Core 7.x-2.07
Drupal Open Atrium Core 7.x-2.06
Drupal Open Atrium Core 7.x-2.04
Drupal Open Atrium Core 7.x-2.03
Drupal Open Atrium Core 7.x-2.02
Drupal Open Atrium Core 7.x-2.01
Drupal Open Atrium Core 7.x-2.0
Drupal Open Atrium 7.x-2.53
Drupal Open Atrium 7.x-2.51
Drupal Open Atrium 7.x-2.50
Drupal Open Atrium 7.x-2.45
Drupal Open Atrium 7.x-2.44
Drupal Open Atrium 7.x-2.43
Drupal Open Atrium 7.x-2.42
Drupal Open Atrium 7.x-2.41
Drupal Open Atrium 7.x-2.40
Drupal Open Atrium 7.x-2.33
Drupal Open Atrium 7.x-2.32
Drupal Open Atrium 7.x-2.31
Drupal Open Atrium 7.x-2.30
Drupal Open Atrium 7.x-2.26
Drupal Open Atrium 7.x-2.25
Drupal Open Atrium 7.x-2.24
Drupal Open Atrium 7.x-2.23
Drupal Open Atrium 7.x-2.22
Drupal Open Atrium 7.x-2.21
Drupal Open Atrium 7.x-2.19
Drupal Open Atrium 7.x-2.18
Drupal Open Atrium 7.x-2.16
Drupal Open Atrium 7.x-2.15
Drupal Open Atrium 7.x-2.13
Drupal Open Atrium 7.x-2.12
Drupal Open Atrium 7.x-2.09
Drupal Open Atrium 7.x-2.04
Drupal Open Atrium 7.x-2.01
Drupal Open Atrium 7.x-2.0
Drupal OA Comment 7.x-2.9
Drupal OA Comment 7.x-2.8
Drupal OA Comment 7.x-2.7
Drupal OA Comment 7.x-2.6
Drupal OA Comment 7.x-2.5
Drupal OA Comment 7.x-2.4
Drupal OA Comment 7.x-2.3
Drupal OA Comment 7.x-2.2
Drupal OA Comment 7.x-2.13
Drupal OA Comment 7.x-2.12
Drupal OA Comment 7.x-2.11
Drupal OA Comment 7.x-2.10
Drupal OA Comment 7.x-2.1
Drupal OA Comment 7.x-2.0


Not Vulnerable: Drupal Open Atrium Core 7.x-2.84
Drupal Open Atrium 7.x-2.615
Drupal OA Comment 7.x-2.14



Related Posts

Comments