6.x.1.6

DATE	CVE	VULNERABILITY TITLE	RISK
2014-05-13	CVE-2013-4502	Permissions, Privileges, and Access Controls vulnerability in Nathan Haug Filefield Sources The FileField Sources module 6.x-1.x before 6.x-1.9 and 7.x-1.x before 7.x-1.9 for Drupal does not properly check file permissions, which allows remote authenticated users to read arbitrary files by attaching a file. network low complexity nathan-haug drupal CWE-264	4.0