Back to search
CVE-2013-4272
Published: Aug 28, 2013
Modified: Sep 17, 2024
PUBLISHED
Description
The BOTCHA Spam Prevention module 7.x-1.x before 7.x-1.6, 7.x-2.x before 7.x-2.1, and 7.x-3.x before 7.x-3.3 for Drupal, when the debugging level is set to 5 or 6, logs the content of submitted forms, which allows context-dependent users to obtain sensitive information such as usernames and passwords by reading the log file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://drupal.org/node/2064785
x_refsource_CONFIRM
[oss-security] 20130822 Re: CVE request for Drupal contributed modules
mailing-list
x_refsource_MLIST
https://drupal.org/node/2064783
x_refsource_CONFIRM
https://drupal.org/node/2065057
x_refsource_MISC
https://drupal.org/node/2064781
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now