VYPR

Entity API

by WordPress

CVEs (2)

  • CVE-2014-1399MedApr 10, 2018
    risk 0.42cvss 6.5epss 0.01

    The entity wrapper access API in the Entity API module 7.x-1.x before 7.x-1.3 for Drupal might allow remote authenticated users to bypass intended access restrictions on referenced entities via unspecified vectors.

  • CVE-2014-1398MedApr 10, 2018
    risk 0.42cvss 6.5epss 0.01

    The entity wrapper access API in the Entity API module 7.x-1.x before 7.x-1.3 for Drupal might allow remote authenticated users to bypass intended access restrictions on comment, user and node statistics properties via unspecified vectors.