Insufficient Permission Checks in Invitation Module for Drupal

Insufficient Permission Checks in Invitation Module for Drupal

CVE-2013-7063 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The Invitation module 7.x-2.x for Drupal does not properly check permissions, which allows remote attackers to obtain sensitive information via unspecified default views.

Learn more about our Web Application Penetration Testing UK.