CVE-2013-4226

Summary

The Authenticated User Page Caching (Authcache) module 7.x-1.x before 7.x-1.5 for Drupal does not properly restrict access to cached pages, which allows remote attackers with the same role-combination as the superuser to obtain sensitive information via the cached pages of the superuser.

Affected Software

VendorProductVersion RangeStatus
n/aAuthenticated User Page Caching (Authcache) module7.x-1.x before 7.x-1.5affected

Weaknesses

  • Path Disclosure

ADP Enrichment

CVE Program Container

Additional References

References