CVE-2014-5179 Information

Description

The freelinking module for Drupal as used in the Freelinking for Case Tracker module does not properly check access permissions for (1) nodes or (2) users which allows remote attackers to obtain sensitive information via a crafted link.

Reference

http://www.securityfocus.com/bid/68861 https://exchange.xforce.ibmcloud.com/vulnerabilities/94870 https://www.drupal.org/node/2308503