CVE-2015-3391 Information

Description

The Path Breadcrumbs module before 7.x-3.2 for Drupal allows remote attackers to bypass intended access restrictions and obtain sensitive node titles by reading a 403 Not Found page.

Reference

http://www.openwall.com/lists/oss-security/2015/02/05/16 http://www.securityfocus.com/bid/72569 https://exchange.xforce.ibmcloud.com/vulnerabilities/100672 https://www.drupal.org/node/2420121 https://www.drupal.org/node/2420139