Description
Drupal 6.x before 6.27 allows remote attackers to obtain sensitive information about uploaded files via a (1) RSS feed or (2) search result.
Remediation
References
Related Vulnerabilities
Perl Out-of-bounds Read Vulnerability (CVE-2015-8608)
Oracle JRE CVE-2013-2422 Vulnerability (CVE-2013-2422)
WordPress Plugin Social Metrics Tracker Cross-Site Scripting (1.6.8)
Atlassian Jira CVE-2019-20898 Vulnerability (CVE-2019-20898)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3369)