User Readonly
1 CVEs
product
Monthly
The User Read-Only module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.4 for Drupal, does not properly assign roles when there are more than three roles on the site and certain unspecified. Rated low severity (CVSS 3.6), this vulnerability is remotely exploitable.
Privilege Escalation
User Readonly
NVD
CVSS 2.0
3.6
EPSS
0.2%
EPSS 0%
CVSS 3.6
LOW
PATCH
Monitor
The User Read-Only module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.4 for Drupal, does not properly assign roles when there are more than three roles on the site and certain unspecified. Rated low severity (CVSS 3.6), this vulnerability is remotely exploitable.
Privilege Escalation
User Readonly
NVD