Commons

commons

Vendor: Acquia • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2013-1908 2Acquia Commons Wikis Project 2Commons Commons Wikis Apr 29, 2026 Jul 16, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Commons Wikis module before 7.x-3.1 for Drupal, as used in the Commons module before 7.x-3.1, does not properly restrict access to groups, which allows remote attackers to post arbitrary content to groups via unspeci...Show more The Commons Wikis module before 7.x-3.1 for Drupal, as used in the Commons module before 7.x-3.1, does not properly restrict access to groups, which allows remote attackers to post arbitrary content to groups via unspecified vectors.Show less
CVE-2013-1907 1Acquia 2Commons Commons Group Apr 29, 2026 Jul 16, 2013 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Commons Group module before 7.x-3.1 for Drupal, as used in the Commons module before 7.x-3.1, does not properly restrict access to groups, which allows remote attackers to post arbitrary content to groups via unspeci...Show more The Commons Group module before 7.x-3.1 for Drupal, as used in the Commons module before 7.x-3.1, does not properly restrict access to groups, which allows remote attackers to post arbitrary content to groups via unspecified vectors.Show less
CVE-2012-4483 1Acquia 1Commons Apr 29, 2026 Oct 31, 2012 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The commons_discussion_views_default_views function in modules/features/commons_discussion/commons_discussion.views_default.inc in the Drupal Commons module 6.x-2.x before 6.x-2.8 for Drupal does not properly enforce int...Show more The commons_discussion_views_default_views function in modules/features/commons_discussion/commons_discussion.views_default.inc in the Drupal Commons module 6.x-2.x before 6.x-2.8 for Drupal does not properly enforce intended node access restrictions, which might allow remote attackers to obtain sensitive information via the recent comments listing.Show less