IDCVSSSummaryLast (major) updatePublished
CVE-2013-4502 4.0
The FileField Sources module 6.x-1.x before 6.x-1.9 and 7.x-1.x before 7.x-1.9 for Drupal does not properly check file permissions, which allows remote authenticated users to read arbitrary files by attaching a file.
14-05-2014 - 14:34 13-05-2014 - 11:55
CVE-2012-5538 2.1
Cross-site scripting (XSS) vulnerability in the FileField Sources module 6.x-1.x before 6.x-1.6 and 7.x-1.x before 7.x-1.6 for Drupal, when the field has "Reference existing" source enabled, allows remote authenticated users to inject arbitrary web s
04-12-2012 - 00:00 03-12-2012 - 16:55
Back to Top Mark selected
Back to Top