Description
Unspecified vulnerability in Userpoints 6.x before 6.x-1.1, a module for Drupal, allows remote authenticated users with "View own userpoints" permissions to read the userpoint data of arbitrary users via unknown attack vectors.
Affected products
- 2bits / userpoints6.x-1.0 – 6.x-1.0
- 2bits / userpoints6.x-1.x-dev – 6.x-1.x-dev
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/37123
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/53896
- MISChttp://www.securityfocus.com/bid/36786
- MISChttp://drupal.org/node/610828
- MISChttp://osvdb.org/59124
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/2998
- MISChttp://drupal.org/node/610818