Secunia Security Advisory – A vulnerability has been reported in the CCK Comment Reference module for Drupal, which can be exploited by malicious users to bypass certain security restrictions.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/82394/sa37206.txt
Source: https://packetstormsecurity.com/files/82394/Secunia-Security-Advisory-37206.html