Vulnerabilities > Drupal > Upload Module

DATE CVE VULNERABILITY TITLE RISK
2008-08-27 CVE-2008-3745 Permissions, Privileges, and Access Controls vulnerability in Drupal and Upload Module
The Upload module in Drupal 6.x before 6.4 allows remote authenticated users to edit nodes, delete files, and download unauthorized attachments via unspecified vectors.
network
low complexity
drupal CWE-264
5.5
5.5