2013-01-03 01:00:00
redhat
PUBLISHED
Drupal 6.x before 6.27 allows remote attackers to obtain sensitive information about uploaded files via a (1) RSS feed or (2) search result.