Vulnerabilities > CVE-2006-6529 - Information Disclosure vulnerability in Drupal Chatroom Module 4.7

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
drupal

Summary

The Chatroom Module before 4.7.x.-1.0 for Drupal displays private messages in a chatroom's last messages overview, which allows remote attackers to obtain sensitive information by reading the overview.

Vulnerable Configurations

Part Description Count
Application
Drupal
1