CVE-2014-9023
CVE-2014-9023
The Twilio module 7.x-1.x before 7.x-1.9 for Drupal does not properly restrict access to the Twilio administration pages, which allows remote authenticated users to read and modify authentication tokens by leveraging the "access administration pages" Drupal permission.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →