Drupal: >> Authenticated User Page Caching Security Vulnerabilities
The Authenticated User Page Caching (Authcache) module 7.x-1.x before 7.x-1.5 for Drupal does not properly restrict access to cached pages, which allows remote attackers with the same role-combination as the superuser to obtain sensitive information via the cached pages of the superuser.
CVSS Score
6.5
EPSS Score
0.004
Published
2020-02-18