Vulnerabilities > Entity API Project

DATE	CVE	VULNERABILITY TITLE	RISK
2018-04-10	CVE-2014-1400	Improper Access Control vulnerability in multiple products The entity_access API in the Entity API module 7.x-1.x before 7.x-1.3 for Drupal might allow remote authenticated users to bypass intended access restrictions and read unpublished comments via unspecified vectors. network low complexity entity-api-project fedoraproject CWE-284	6.5
2018-04-10	CVE-2014-1399	Improper Access Control vulnerability in multiple products The entity wrapper access API in the Entity API module 7.x-1.x before 7.x-1.3 for Drupal might allow remote authenticated users to bypass intended access restrictions on referenced entities via unspecified vectors. network low complexity entity-api-project fedoraproject CWE-284	6.5
2018-04-10	CVE-2014-1398	Improper Access Control vulnerability in multiple products The entity wrapper access API in the Entity API module 7.x-1.x before 7.x-1.3 for Drupal might allow remote authenticated users to bypass intended access restrictions on comment, user and node statistics properties via unspecified vectors. network low complexity entity-api-project fedoraproject CWE-284	6.5

Vulnerabilities > Entity API Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Entity API Project"}]}