Vulnerabilities > Earl Dunovant

DATE CVE VULNERABILITY TITLE RISK
2012-10-31 CVE-2012-4491 Permissions, Privileges, and Access Controls vulnerability in Earl Dunovant Monthly Archive BY Node Type 6.X1.0/6.X2.0/6.X3.0
The Monthly Archive by Node Type module 6.x for Drupal does not properly check permissions defined by node_access modules, which allows remote attackers to access restricted nodes via unspecified vectors.
5.8
2010-02-27 CVE-2010-0752 Permissions, Privileges, and Access Controls vulnerability in Earl Dunovant Week
The week_post_page function in the Weekly Archive by Node Type module 6.x before 6.x-2.7 for Drupal does not properly implement node access restrictions when constructing SQL queries, which allows remote attackers to read restricted node listings via unspecified vectors.
network
low complexity
earl-dunovant drupal CWE-264
5.0