CVE-2010-0752

CVE-2010-0752 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The week_post_page function in the Weekly Archive by Node Type module 6.x before 6.x-2.7 for Drupal does not properly implement node access restrictions when constructing SQL queries, which allows remote attackers to read restricted node listings via unspecified vectors.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.