Privilege Escalation Vulnerability in Drupal 7.x User Module
CVE-2016-6211 · MEDIUM Severity
AV:N/AC:L/AU:S/C:P/I:P/A:P
The User module in Drupal 7.x before 7.44 allows remote authenticated users to gain privileges via vectors involving contributed or custom code that triggers a rebuild of the user profile form.
Learn more about our User Device Pen Test.