Description
The Views module 7.x-3.x before 7.x-3.14 in Drupal 7.x and the Views module in Drupal 8.x before 8.1.3 might allow remote authenticated users to bypass intended access restrictions and obtain sensitive Statistics information via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Customer Reviews Unspecified Vulnerability (3.0.7)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2019-3894)
WordPress Plugin Abandoned Cart Lite for WooCommerce SQL Injection (1.8)
PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-15080)