CVE-2009-4044 Information

Description

The Web Services module 6.x for Drupal does not perform the expected access control which allows remote attackers to make unspecified use of an API via unknown vectors.

Reference

http://drupal.org/node/630244 http://www.securityfocus.com/bid/37000 http://www.vupen.com/english/advisories/2009/3218 https://exchange.xforce.ibmcloud.com/vulnerabilities/54249