CVE-2016-6212

The Views module 7.x-3.x before 7.x-3.14 in Drupal 7.x and the Views module in Drupal 8.x before 8.1.3 might allow remote authenticated users to bypass intended access restrictions and obtain sensitive Statistics information via unspecified vectors.

Date published : 2016-09-09

http://www.securityfocus.com/bid/91230

https://www.drupal.org/SA-CORE-2016-002