CVE-2008-4790
Drupal Core Multiple Vulnerabilities (CVE-2008-4790): The core upload module in Drupal 5.x before 5.11 allows remote authenticated users to bypass access restrictions and read files attached to content via unknown vectors. Affected version range: 5.x