Vulnerabilities > CVE-2013-4226 - Missing Authorization vulnerability in Drupal Authenticated User Page Caching
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
The Authenticated User Page Caching (Authcache) module 7.x-1.x before 7.x-1.5 for Drupal does not properly restrict access to cached pages, which allows remote attackers with the same role-combination as the superuser to obtain sensitive information via the cached pages of the superuser.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 6 |