Unrated severityNVD Advisory· Published Apr 11, 2008· Updated Jun 16, 2026
CVE-2008-1729
CVE-2008-1729
Description
The menu system in Drupal 6 before 6.2 has incorrect menu settings, which allows remote attackers to (1) edit the profile pages of arbitrary users, and obtain sensitive information from (2) tracker and (3) blog pages, related to a missing check for the "access content" permission; and (4) allows remote authenticated users, with administration page view access, to edit content types.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
6- drupal.org/node/244637nvdPatchVendor Advisory
- www.securityfocus.com/bid/28714nvdPatchThird Party AdvisoryVDB Entry
- secunia.com/advisories/29762nvdThird Party Advisory
- www.vupen.com/english/advisories/2008/1185/referencesnvdThird Party Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/41755nvdThird Party AdvisoryVDB Entry
- www.osvdb.org/44270nvdBroken Link
News mentions
0No linked articles in our index yet.