CVE-2014-8734

Drupal Organic Groups Menu < 7.x-2.2 - Authenticated Settings Modification

Title source: llm
STIX 2.1

Description

The Organic Groups Menu (aka OG Menu) module before 7.x-2.2 for Drupal allows remote authenticated users with the "access administration pages" permission to change module settings via unspecified vectors.

References (3)

Core 3
Core References
Patch x_refsource_confirm
https://www.drupal.org/node/2365259
Patch, Vendor Advisory x_refsource_misc
https://www.drupal.org/node/2365685
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/98445

Scores

EPSS 0.0019
EPSS Percentile 40.9%

Details

CWE
CWE-264
Status published
Products (3)
drupal/organic_groups_menu 7.x-2.0
drupal/organic_groups_menu 7.x-2.x-dev
drupal/organic_groups_menu < 7.x-2.1
Published Nov 12, 2014
Tracked Since Feb 18, 2026