Information Disclosure Vulnerability in Drupal 6.x and 7.x

Information Disclosure Vulnerability in Drupal 6.x and 7.x

CVE-2012-5651 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Drupal 6.x before 6.27 and 7.x before 7.18 displays information for blocked users, which might allow remote attackers to obtain sensitive information by reading the search results.

Learn more about our User Device Pen Test.