exploit the possibilities
Showing 1 - 25 of 100 RSS Feed

Files

Drupal Contact Save 6.x Cross Site Scripting
Posted Mar 29, 2012
Authored by Stella Power | Site drupal.org

The Drupal Contact Save module version 6.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | c19644fad57ebb9838d317e0976ee7d3

Related Files

Debian Security Advisory 4123-1
Posted Feb 24, 2018
Authored by Debian | Site debian.org

Debian Linux Security Advisory 4123-1 - Multiple vulnerabilities have been found in the Drupal content management framework.

tags | advisory, vulnerability
systems | linux, debian
MD5 | 65bcddb5127fe0c94eb776c1e4ca7d94
Debian Security Advisory 3604-1
Posted Jun 17, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3604-1 - A privilege escalation vulnerability has been found in the User module of the Drupal content management framework.

tags | advisory
systems | linux, debian
MD5 | 794ab4f9ae3248dd5b1c987eebf784db
Debian Security Advisory 3498-1
Posted Feb 29, 2016
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3498-1 - Multiple security vulnerabilities have been found in the Drupal content management framework.

tags | advisory, vulnerability
systems | linux, debian
MD5 | 69cb351c719cdfb905cab25efdbb5802
Debian Security Advisory 3200-1
Posted Mar 23, 2015
Authored by Debian | Site debian.org

Debian Linux Security Advisory 3200-1 - Multiple vulnerabilities have been found the Drupal content management framework.

tags | advisory, vulnerability
systems | linux, debian
advisories | CVE-2015-2559
MD5 | 8b262f4481837e29b335bb0ecd4a7077
Debian Security Advisory 2983-1
Posted Jul 21, 2014
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2983-1 - Multiple security issues have been discovered in the Drupal content management system, ranging from denial of service to cross-site scripting.

tags | advisory, denial of service, xss
systems | linux, debian
MD5 | 7d923bdcc090166b1830dcd3e85214f2
Debian Security Advisory 2776-1
Posted Oct 11, 2013
Authored by Debian | Site debian.org

Debian Linux Security Advisory 2776-1 - Multiple vulnerabilities have been been fixed in the Drupal content management framework, resulting in information disclosure, insufficient validation, cross-site scripting and cross-site request forgery.

tags | advisory, vulnerability, xss, info disclosure, csrf
systems | linux, debian
advisories | CVE-2012-0825, CVE-2012-0826, CVE-2012-5651, CVE-2012-5652, CVE-2012-5653, CVE-2013-0244, CVE-2013-0245
MD5 | 8aae5403b2203990bdccf815b471e30b
Drupal Contact Forms 6.x Cross Site Scripting
Posted Mar 29, 2012
Authored by Ivo Van Geertruyen | Site drupal.org

The Drupal Contact Forms module version 6.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | b0dd11cb6a3bc7b2bc21bf5629086245
Drupal Slidebox 7.x Access Bypass
Posted Mar 14, 2012
Authored by Joshua Brauer | Site drupal.org

The Drupal Slidebox module version 7.x suffers from an access bypass vulnerability.

tags | advisory, bypass
MD5 | 07f45805d636e668edea93ed22eea79b
Drupal Modules Cross Site Scripting / Cross Site Request Forgery
Posted Mar 14, 2012
Site drupal.org

Various Drupal modules such as Content Lock, Ubercart Bulk Stock Updater, Ubercart Payflow Link, ticketyboo News Ticker, Admin tools, and Redirecting click bouncer suffer from cross site request forgery, cross site scripting, and remote SQL injection vulnerabilities.

tags | advisory, remote, vulnerability, xss, sql injection, csrf
MD5 | 10da15283fa34560f4470aea6bb0b7ea
Drupal Webform 6.x / 7.x Cross Site Scripting
Posted Mar 8, 2012
Authored by Kyle Small | Site drupal.org

The Drupal Webform module versions 6.x and 7.x suffer from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 05e8c1a05eeb06923b80db8d1cc4893a
Drupal Node Recommendation 6.x Cross Site Scripting
Posted Mar 8, 2012
Authored by Dylan Tack | Site drupal.org

The Drupal Note Recommendation module version 6.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | a9777d1706f439b66e3a447aea8c8762
Drupal Read More Link 6.x Cross Site Scripting
Posted Mar 8, 2012
Authored by Kyle Small | Site drupal.org

The Read More Link module version 6.x in Drupal allows you to move the "Read more" link from the node's links area to the end of the teaser text. A user could inject java script into pages affecting other site users. This vulnerability is mitigated by the fact that an attacker must have a role with the permission "access administration pages."

tags | advisory, java
MD5 | 011285bd6f4cb935c0d37eae71940072
Drupal Block Class 7.x Cross Site Scripting
Posted Mar 7, 2012
Authored by Katherine Senzee | Site drupal.org

The Drupal block class module allows users to add classes to any block through the block's configuration interface The class names in a block were not properly filtered. Someone with the ability to modify or create blocks could inject java script that would be rendered when viewing the block. Blockclass versions prior to 7.x-1.0 are affected.

tags | advisory, java
MD5 | 92bb61df738055b8e89c3a2cee251eea
Drupal UC PayDutchGroup / WeDeal Payment / Multisite Search Disclosure
Posted Mar 7, 2012
Authored by Justin C. Klein Keane, Rolf Meijer | Site drupal.org

UC PayDutchGroup / WeDeal payment integrates the PayDutchGroup / WeDeal payment gateway with Ubercart. The module exposes account credentials for the store's PayDutchGroup account under certain circumstances allowing a malicious user to login to the PayDutchGroup site as the store owner and manage the store owner's account. The vulnerability is mitigated by an attacker needing to gain an account with the ability to checkout of the store. Multisite Search allows you to index and search content from all sites in a Multisite configuration. The module doesn't sufficiently escape user input when constructing queries. The vulnerability is mitigated by the fact that in order to execute arbitrary sql injection malicious users must have the ability to administer multisite search.

tags | advisory, arbitrary, sql injection
MD5 | f4ba0336fff0cf8347f4d9492ceebf9d
Drupal Data 6.x-1.x Cross Site Scripting
Posted Mar 7, 2012
Authored by Justin C. Klein Keane | Site drupal.org

The Drupal Data module 6.x-1.x versions prior to 6.x-1.0 suffer from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 571b60cce70fceb377c51462788e551c
Drupal CMS 7.12 Cross Site Request Forgery
Posted Mar 2, 2012
Authored by Ivano Binetti

Drupal CMS version 7.12 suffers from multiple cross site request forgery vulnerabilities.

tags | exploit, vulnerability, csrf
MD5 | 624cc16af3f882c63334256d25a4f257
Taxonomy Views Integrator 6.x Cross Site Scripting
Posted Mar 1, 2012
Authored by Dmitry Trt | Site drupal.org

Taxonomy Views Integrator version 6.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 41488e22f5ceb3621f0b84f808cd550c
Hierarchical Select 6.x Cross Site Scripting
Posted Mar 1, 2012
Authored by Sam Oldak, Wim Leers | Site drupal.org

Hierarchical Select version 6.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 39f5c665d3dfceac1bfc39cefca49bc3
Submenu Tree 6.x Cross Site Scripting
Posted Mar 1, 2012
Authored by Kyle Small | Site drupal.org

Submenu Tree version 6.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | b8307205381abb2c06c0b4a0f2206ebf
ZipCart 6.x Access Bypass
Posted Feb 29, 2012
Authored by Chris Burgess | Site drupal.org

ZipCart version 6.x suffers from an access bypass vulnerability.

tags | advisory, bypass
MD5 | da0051d73b9160d001bdaafb0d37a99c
Cool Aid 6.x Access Bypass / Cross Site Scripting
Posted Feb 29, 2012
Authored by Ivo Van Geertruyen | Site drupal.org

Cool Aid version 6.x suffers from access bypass and cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss
MD5 | 0c69121ff538ea7479ed4ea4da7aca8a
MediaFront 6.x / 7.x Cross Site Scripting
Posted Feb 29, 2012
Authored by Oscar Estepa | Site drupal.org

MediaFront versions 6.x / 7.x suffer from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 83c1c9fec0d359bcc14efea81dfd02f2
Drupal 6.22 With Finder 6.x-1.9 Code Execution / Cross Site Scripting
Posted Feb 10, 2012
Authored by Justin C. Klein Keane

Drupal version 6.22 with Finder version 6.x-1.9 suffers from code execution and cross site scripting vulnerabilities.

tags | exploit, vulnerability, code execution, xss
MD5 | b36e1fc1306459154d4d482543e851b3
Drupal CKEditor 3.6.2 Cross Site Scripting
Posted Jan 18, 2012
Authored by MaXe

Drupal CKEditor versions 3.0 through 3.6.2 suffer from a persistent cross site scripting vulnerability that can be triggered by the addition of an event handler.

tags | exploit, xss
MD5 | bf64a6d53127c46165196faeec57a725
Drupal 6.22 / SuperCron 6.x-1.3 Cross Site Scripting
Posted Dec 22, 2011
Authored by Justin C. Klein Keane

Drupal version 6.22 with SuperCron version 6.x-1.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 8de5defe9193f6b1a764c7c7e8649b44
Page 1 of 4
Back1234Next

File Archive:

August 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Aug 1st
    3 Files
  • 2
    Aug 2nd
    2 Files
  • 3
    Aug 3rd
    32 Files
  • 4
    Aug 4th
    22 Files
  • 5
    Aug 5th
    15 Files
  • 6
    Aug 6th
    19 Files
  • 7
    Aug 7th
    6 Files
  • 8
    Aug 8th
    1 Files
  • 9
    Aug 9th
    2 Files
  • 10
    Aug 10th
    27 Files
  • 11
    Aug 11th
    11 Files
  • 12
    Aug 12th
    11 Files
  • 13
    Aug 13th
    17 Files
  • 14
    Aug 14th
    7 Files
  • 15
    Aug 15th
    0 Files
  • 16
    Aug 16th
    0 Files
  • 17
    Aug 17th
    0 Files
  • 18
    Aug 18th
    0 Files
  • 19
    Aug 19th
    0 Files
  • 20
    Aug 20th
    0 Files
  • 21
    Aug 21st
    0 Files
  • 22
    Aug 22nd
    0 Files
  • 23
    Aug 23rd
    0 Files
  • 24
    Aug 24th
    0 Files
  • 25
    Aug 25th
    0 Files
  • 26
    Aug 26th
    0 Files
  • 27
    Aug 27th
    0 Files
  • 28
    Aug 28th
    0 Files
  • 29
    Aug 29th
    0 Files
  • 30
    Aug 30th
    0 Files
  • 31
    Aug 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close