Drupal FileField Module Information Disclosure Vulnerability

The FileField module for Drupal is prone to an information-disclosure vulnerability because it fails to restrict access to certain files.

Attackers can exploit this issue to obtain sensitive information that may lead to further attacks.

The issue affects FileField 6.x-3.1.


 

Privacy Statement
Copyright 2010, SecurityFocus