Secunia Security Advisory – Some vulnerabilities have been reported in Drupal, which can be exploited by malicious people to bypass certain security restrictions, conduct cross-site scripting and session fixation attacks, and manipulate outgoing mails.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/44633/sa19245.txt
Source: https://packetstormsecurity.com/files/44633/Secunia-Security-Advisory-19245.html