Vulnerabilities > CVE-2019-25012 - Incorrect Authorization vulnerability in Webform Report Project Webform Report 7.X1.Xdev
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
The Webform Report project 7.x-1.x-dev for Drupal allows remote attackers to view submissions by visiting the /rss.xml page. NOTE: This project is not covered by Drupal's security advisory policy.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |