1
Candidate: CVE-2010-3093
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3093
6
The comment module in Drupal 5.x before 5.23 and 6.x before 6.18 allows
7
remote authenticated users with certain privileges to bypass intended
8
access restrictions and reinstate removed comments via a crafted URL,
9
related to an "unpublishing bypass" issue.
18
debdiff: https://bugs.launchpad.net/ubuntu/+source/drupal6/+bug/539056
19
upstream_drupal6: released (6.18, 6.16-1)
22
jaunty_drupal6: ignored (reached end-of-life)
23
karmic_drupal6: ignored (reached end-of-life)
24
lucid_drupal6: not-affected (6.16-1)
25
maverick_drupal6: not-affected
26
natty_drupal6: not-affected
27
devel_drupal6: not-affected
30
debdiff: https://bugs.launchpad.net/ubuntu/+source/drupal6/+bug/539056
31
upstream_drupal5: released (5.23)
33
hardy_drupal5: released (5.7-1ubuntu1.3)
34
jaunty_drupal5: ignored (reached end-of-life)
35
karmic_drupal5: released (5.18-1.1ubuntu2.2)