CVE-2007-3689 Information

Description

The Print module before 4.7-1.0 and 5.x before 5.x-1.2 for Drupal allows remote attackers to read restricted posts in (1) Organic Groups (2) Taxonomy Access Control (3) Taxonomy Access Lite and other unspecified node access modules via modified URL arguments.

Reference

http://drupal.org/node/152804 http://drupal.org/node/158029 http://drupal.org/node/158032 http://osvdb.org/37897 http://secunia.com/advisories/25978 http://www.securityfocus.com/bid/24862 http://www.vupen.com/english/advisories/2007/2470 https://exchange.xforce.ibmcloud.com/vulnerabilities/35314 printfriendlypages-url-security-bypass(35314)