Drupal Forward Module Security Bypass
Secunia Advisory: SA34282
Critical: Less Critical
|Solution Status:||Vendor Patch|
|Software:||Drupal Forward Module 5.x|
A vulnerability has been reported in the Drupal Forward Module, which can be exploited by malicious people to bypass certain security restrictions.
The vulnerability is caused due to an unspecified error related to the Drupal flood control API, which can be exploited to send unlimited spam mails.
The vulnerability is reported in versions prior to 5.x-1.19.
Update to version 5.x-1.19.
Provided and/or discovered by:
The vendor credits Helmut Debes, Dylan Wilder-Tack, and Owen Barton.
Original Advisory: http://drupal.org/node/398564
No CVE references.