Vulnerabilities > CVE-2013-4226 - Missing Authorization vulnerability in Drupal Authenticated User Page Caching
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
The Authenticated User Page Caching (Authcache) module 7.x-1.x before 7.x-1.5 for Drupal does not properly restrict access to cached pages, which allows remote attackers with the same role-combination as the superuser to obtain sensitive information via the cached pages of the superuser.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 6 |