Description
Drupal 6.x before 6.27 allows remote attackers to obtain sensitive information about uploaded files via a (1) RSS feed or (2) search result.
Remediation
References
Related Vulnerabilities
WordPress 5.0.x Cross-Site Request Forgery (5.0 - 5.0.3)
WordPress Plugin CF7 Invisible reCAPTCHA Cross-Site Scripting (1.3.1)
Oracle Application Server Other Vulnerability (CVE-2001-1372)
Squid CVE-2019-12523 Vulnerability (CVE-2019-12523)
Jboss EAP Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2011-2487)