Skip to main content

Filefield

1 CVEs product

Monthly

CVE-2014-9156 MEDIUM This Month

The FileField module 6.x-3.x before 6.x-3.13 for Drupal does not properly check permissions to view files, which allows remote authenticated users with permission to create or edit content to read. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Filefield
NVD
CVSS 2.0
4.0
EPSS
0.2%
EPSS 0% CVSS 4.0
MEDIUM This Month

The FileField module 6.x-3.x before 6.x-3.13 for Drupal does not properly check permissions to view files, which allows remote authenticated users with permission to create or edit content to read. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Filefield
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy