Tableofcontents
1 CVEs
product
Monthly
The Table of Contents module 6.x-3.x before 6.x-3.8 for Drupal does not properly check node permissions, which allows remote attackers to read a node's headers by accessing a table of contents block. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.
Privilege Escalation
Tableofcontents
NVD
CVSS 2.0
4.3
EPSS
0.2%
EPSS 0%
CVSS 4.3
MEDIUM
PATCH
This Month
The Table of Contents module 6.x-3.x before 6.x-3.8 for Drupal does not properly check node permissions, which allows remote attackers to read a node's headers by accessing a table of contents block. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.
Privilege Escalation
Tableofcontents
NVD