Vulnerabilities > Organic Groups Project > Organic Groups > 7.x.1.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-12-03 | CVE-2012-5539 | Permissions, Privileges, and Access Controls vulnerability in Organic Groups Project Organic Groups The Organic Groups (OG) module 7.x-1.x before 7.x-1.5 for Drupal does not properly maintain pending group memberships, which allows remote authenticated users to post to arbitrary groups by modifying their own account while a pending membership is waiting to be approved. | 3.5 |