Description
The File module in Drupal 7.x before 7.11, when using unspecified field access modules, allows remote authenticated users to read arbitrary private files that are associated with restricted fields via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin PDF Flipbook, 3D Flipbook WordPress-DearFlip Cross-Site Scripting (1.7.9)
Apache Tomcat Resource Management Errors Vulnerability (CVE-2012-4534)
WordPress Plugin Visitor Traffic Real Time Statistics Unspecified Vulnerability (2.13)
MySQL CVE-2013-1555 Vulnerability (CVE-2013-1555)
WordPress Plugin Caldera Forms-More Than Contact Forms Cross-Site Scripting (1.5.4)