CVE-2012-1056

Published: Feb 14, 2012Modified: Apr 29, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The Forward module 6.x-1.x before 6.x-1.21 and 7.x-1.x before 7.x-1.3 for Drupal does not properly enforce permissions for (1) Recent forwards, (2) Most forwarded, or (3) Dynamic blocks, which allows remote attackers to obtain node titles via unspecified vectors.

Affected (33)

Products: Sean Robertson: Forward

Sean Robertson

1 product

Forward

Configuration A

22 vulnerable

Vulnerable Software	Affected Versions
Sean Robertson Forward	Version 6.x-1.0
Sean Robertson Forward	Version 6.x-1.10
Sean Robertson Forward	Version 6.x-1.11
Sean Robertson Forward	Version 6.x-1.12
Sean Robertson Forward	Version 6.x-1.13
Sean Robertson Forward	Version 6.x-1.14
Sean Robertson Forward	Version 6.x-1.15
Sean Robertson Forward	Version 6.x-1.16
Sean Robertson Forward	Version 6.x-1.17
Sean Robertson Forward	Version 6.x-1.18
Sean Robertson Forward	Version 6.x-1.19
Sean Robertson Forward	Version 6.x-1.1
Sean Robertson Forward	Version 6.x-1.20
Sean Robertson Forward	Version 6.x-1.2
Sean Robertson Forward	Version 6.x-1.3
Sean Robertson Forward	Version 6.x-1.4
Sean Robertson Forward	Version 6.x-1.5
Sean Robertson Forward	Version 6.x-1.6
Sean Robertson Forward	Version 6.x-1.7
Sean Robertson Forward	Version 6.x-1.8
Sean Robertson Forward	Version 6.x-1.9
Sean Robertson Forward	Version 6.x-1.x-dev

Configuration B

11 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Sean Robertson Forward	Version 7.x-1.0
Sean Robertson Forward	Version 7.x-1.0 alpha1
Sean Robertson Forward	Version 7.x-1.0 alpha2
Sean Robertson Forward	Version 7.x-1.0 alpha3
Sean Robertson Forward	Version 7.x-1.0 rc1
Sean Robertson Forward	Version 7.x-1.0 rc2
Sean Robertson Forward	Version 7.x-1.0 rc3
Sean Robertson Forward	Version 7.x-1.0 rc4
Sean Robertson Forward	Version 7.x-1.1
Sean Robertson Forward	Version 7.x-1.2
Sean Robertson Forward	Version 7.x-1.x-dev