Field Access Bypass Vulnerability in Services Module for Drupal

CVE-2015-4394 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The Services module 7.x-3.x before 7.x-3.12 for Drupal allows remote attackers to bypass the field_access restriction and obtain sensitive private field information via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.