Vulnerability Details CVE-2013-7066
The Entity reference module 7.x-1.x before 7.x-1.1-rc1 for Drupal allows remote attackers to read private nodes titles by leveraging edit permissions to a node that references a private node.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.1%
CVSS Severity
CVSS v2 Score 4.3
References
Products affected by CVE-2013-7066
-
cpe:2.3:a:entity_reference_project:entityreference:7.x-1.0
-
cpe:2.3:a:entity_reference_project:entityreference:7.x-1.x