Secunia Security Advisory – A security issue and some vulnerabilities have been reported in Drupal, which can be exploited by malicious users to disclose sensitive information and bypass certain security restrictions, and by malicious people to disclose sensitive information and conduct cross-site scripting attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/78892/sa35681.txt
Source: https://packetstormsecurity.com/files/78892/Secunia-Security-Advisory-35681.html