Description
Drupal 6.x before 6.27 and 7.x before 7.18 displays information for blocked users, which might allow remote attackers to obtain sensitive information by reading the search results.
Remediation
References
Related Vulnerabilities
WordPress Plugin Simple Sitemap-Create a Responsive HTML Sitemap Cross-Site Scripting (3.5.7)
Nginx Out-of-bounds Write Vulnerability (CVE-2022-41741)
WordPress Plugin Modern Events Calendar Lite Multiple Vulnerabilities (5.16.5)
Python Off-by-one Error Vulnerability (CVE-2007-2052)
ownCloud Improper Privilege Management Vulnerability (CVE-2021-35946)