Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2017-6919

Disclosure Date: April 20, 2017 (last updated October 05, 2023)
Drupal 8 before 8.2.8 and 8.3 before 8.3.1 allows critical access bypass by authenticated users if the RESTful Web Services (rest) module is enabled and the site allows PATCH requests.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0