CVE-2009-3782 Information

Description

Unspecified vulnerability in Userpoints 6.x before 6.x-1.1 a module for Drupal allows remote authenticated users with \View own userpoints\ permissions to read the userpoint data of arbitrary users via unknown attack vectors.

Reference

http://drupal.org/node/610818 http://drupal.org/node/610828 http://osvdb.org/59124 http://secunia.com/advisories/37123 http://www.securityfocus.com/bid/36786 http://www.vupen.com/english/advisories/2009/2998 https://exchange.xforce.ibmcloud.com/vulnerabilities/53896