MidnightBSD

Advisories for entity_reference_project

CVE-2013-7066 MEDIUM

The Entity reference module 7.x-1.x before 7.x-1.1-rc1 for Drupal allows remote attackers to read private nodes titles by leveraging edit permissions to a node that references a private node.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
entity_reference_project entityreference 7.x-1.x
entity_reference_project entityreference 7.x-1.0