Vulnerability: Access Restriction Bypass in Dynamic Display Block Module for Drupal

Vulnerability: Access Restriction Bypass in Dynamic Display Block Module for Drupal

CVE-2015-5491 · LOW Severity

AV:N/AC:M/AU:S/C:P/I:N/A:N

The Dynamic display block module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users to bypass intended access restrictions and read sensitive titles by leveraging the "administer ddblock" permission.

Learn more about our User Device Pen Test.