CVE-2013-4500 Information

Feb 14, 2021 cve

Description

The Quiz module 6.x-4.x before 6.x-4.5 for Drupal allows remote authenticated users with the \view any quiz results\ or \view results for own quiz\ permission to delete arbitrary results via the delete option.

Reference

http://seclists.org/oss-sec/2013/q4/210 https://drupal.org/node/2123727 https://drupal.org/node/2123995

Share on: