FileField Sources - Moderately critical - Information Disclosure - SA-CONTRIB-2018-007

Project: FileField Sources
Date: 2018-February-07
Security risk: *Moderately critical* 12∕25
Vulnerability: Information Disclosure

Description

 
This module enables you to upload files to fields via several sources.

The module doesn't sufficiently handle access control under the scenario of
the autocomplete path of reference sources.

Solution

Install the latest version:

If you use the filefield_sources module provided reference source for Drupal 7.x, upgrade to 7.x-1.11.

Add new comment