what you don't know can hurt you
Showing 26 - 50 of 100 RSS Feed

Files

Drupal Heartbeat 6.x / 7.x Cross Site Request Forgery
Posted Sep 6, 2012
Authored by Greg Knaddison | Site drupal.org

Drupal Heartbeat versions 6.x and 7.x suffer from a cross site request forgery vulnerability.

tags | advisory, csrf
MD5 | 65f78c04cd7fbe4ed2637c65f71ee0d8

Related Files

Submenu Tree 6.x Cross Site Scripting
Posted Mar 1, 2012
Authored by Kyle Small | Site drupal.org

Submenu Tree version 6.x suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | b8307205381abb2c06c0b4a0f2206ebf
ZipCart 6.x Access Bypass
Posted Feb 29, 2012
Authored by Chris Burgess | Site drupal.org

ZipCart version 6.x suffers from an access bypass vulnerability.

tags | advisory, bypass
MD5 | da0051d73b9160d001bdaafb0d37a99c
Cool Aid 6.x Access Bypass / Cross Site Scripting
Posted Feb 29, 2012
Authored by Ivo Van Geertruyen | Site drupal.org

Cool Aid version 6.x suffers from access bypass and cross site scripting vulnerabilities.

tags | advisory, vulnerability, xss
MD5 | 0c69121ff538ea7479ed4ea4da7aca8a
MediaFront 6.x / 7.x Cross Site Scripting
Posted Feb 29, 2012
Authored by Oscar Estepa | Site drupal.org

MediaFront versions 6.x / 7.x suffer from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | 83c1c9fec0d359bcc14efea81dfd02f2
Drupal 6.22 With Finder 6.x-1.9 Code Execution / Cross Site Scripting
Posted Feb 10, 2012
Authored by Justin C. Klein Keane

Drupal version 6.22 with Finder version 6.x-1.9 suffers from code execution and cross site scripting vulnerabilities.

tags | exploit, vulnerability, code execution, xss
MD5 | b36e1fc1306459154d4d482543e851b3
Drupal CKEditor 3.6.2 Cross Site Scripting
Posted Jan 18, 2012
Authored by MaXe

Drupal CKEditor versions 3.0 through 3.6.2 suffer from a persistent cross site scripting vulnerability that can be triggered by the addition of an event handler.

tags | exploit, xss
MD5 | bf64a6d53127c46165196faeec57a725
Drupal 6.22 / SuperCron 6.x-1.3 Cross Site Scripting
Posted Dec 22, 2011
Authored by Justin C. Klein Keane

Drupal version 6.22 with SuperCron version 6.x-1.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 8de5defe9193f6b1a764c7c7e8649b44
Drupal String Overrides Cross Site Scripting
Posted Nov 10, 2011
Authored by Justin C. Klein Keane

Drupal version 6.20 with String Overrides version 6.x-1.8 and Drupal version 5.21 with String Overrides version 5.x-1.8 suffer from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | c6265dfcf83baebed88f99de3d776823
Drupal 6.22 Cross Site Scripting
Posted Jun 28, 2011
Authored by MustLive

Drupal versions 6.22 and below suffer from brute forcing and cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 88deba8d28b3ef77cc7b8d50b5110843
Drupal With Webform Cross Site Scripting
Posted May 24, 2011
Authored by Justin C. Klein Keane

Drupal version 6.20 with Webform 6.x-2.10, Drupal version 7.0 with Webform 7.x-3.9, and Drupal with Webform 5.x-2.10 suffer from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 6b2ad651d8f2a20727c0cf7928bd8e95
Drupal Themes XSS / Denial Of Service
Posted Apr 18, 2011
Authored by MustLive

Multiple Drupal themes suffer from cross site scripting and denial of service vulnerabilities. Affected themes include Fresh News, Inspire, Spectrum, Delegate, Optimize, Bueno, Headlines, Daily Edition, Coffee Break, The Gazette Edition.

tags | advisory, denial of service, vulnerability, xss
MD5 | 74e3195dcb816701fe2abc173c6845bc
Drupal 7.0 Shell Execution
Posted Apr 10, 2011
Authored by KedAns-Dz

Drupal version 7.0 suffers from a remote command execution vulnerability.

tags | exploit, remote
MD5 | 493cbc85811717cda45ad6bd3d71cc6e
Drupal Broken Anti-Automation / Path Disclosure
Posted Feb 16, 2011
Authored by MustLive

Drupal versions 6.20 and below suffer from broken anti-automation and path disclosure vulnerabilities.

tags | advisory, vulnerability
MD5 | 1706624c87a84f4a6c0a788b9998cd59
Drupal CAPTCHA Logic Security Flaw
Posted Feb 10, 2011
Authored by Michele Orru

This is a proof of concept to demonstrate a logic security flow in the way Drupal CAPTCHA is used to protect login forms from bruteforce. If the CAPTCHA challenge is solved, the next login attempts can be issued without solving any new CAPTCHA challenge.

tags | exploit, proof of concept
MD5 | 2c9031b926a0ce43ba7444e69b2948f0
Drupal 6.20 With Data 6.x-1.0-alpha14 SQL Injection / Cross Site Scripting
Posted Feb 10, 2011
Authored by Justin C. Klein Keane

Drupal version 6.20 with Data version 6.x-1.0-alpha14 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | advisory, remote, vulnerability, xss, sql injection
MD5 | d672e3b5d9554dfb10369ecb63bc9c33
Drupal Panels Cross Site Scripting
Posted Jan 31, 2011
Authored by Justin C. Klein Keane

The Drupal Panels module suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | f671d9ffb2c06422bce17c43c3660f09
Drupal Custom Pagers Module Cross Site Scripting
Posted Jan 31, 2011
Authored by Justin C. Klein Keane

The Drupal Custom Pagers module suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | ef1467a885c0a13ff26ac13064f55dbc
Drupal 5.x / 6.x Stored Cross Site Scripting
Posted Jan 13, 2011
Authored by Aung Khant | Site yehg.net

Drupal versions 5.x and 6.x suffer from a stored cross site scripting vulnerability.

tags | advisory, xss
MD5 | b5db5de54511990f34b16bf659069c02
Drupal FileField 6.x-3.3 Arbitrary Script Injection
Posted Jun 18, 2010
Authored by Justin C. Klein Keane

Drupal FileField version 6.x-3.3 suffers from an arbitrary script injection vulnerability.

tags | advisory, arbitrary
advisories | CVE-2010-1958
MD5 | 3ef3a39a5b1646bdf89894953b6a2774
Drupal 6.16 Ctools 6.x-1.3 PHP Code Execution / Cross Site Request Forgery
Posted May 21, 2010
Authored by Justin C. Klein Keane

Drupal version 6.16 with Ctools version 6.x-1.3 suffers from php code execution and cross site request forgery vulnerabilities.

tags | advisory, php, vulnerability, code execution, csrf
advisories | CVE-2010-1546, CVE-2010-1547, CVE-2010-1548
MD5 | 582bbddc81b23ad46b25c999a8c30de1
Drupal Storm 1.32 Cross Site Scripting
Posted May 14, 2010
Authored by Black Packeteer

The Drupal Storm module version 1.32 suffers from cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 0d797aa7d285b8b3bddc8140ca04e412
Drupal 6.16 With Context 6.x-2.0-rc3 Cross Site Scripting
Posted May 10, 2010
Authored by Justin C. Klein Keane

Drupal version 6.16 with Context 6.x-2.0-rc3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2010-1584
MD5 | 315c928a1c5c7642455ab079a81f8079
Drupal 6.16 Better Formats Cross Site Scripting
Posted Apr 28, 2010
Authored by Justin C. Klein Keane

Drupal version 6.16 with Better Formats version 6.x-1.2 suffers from a cross site scripting vulnerability.

tags | advisory, xss
MD5 | c1de6a571eb8b2a4689623c07b2eb5c9
Drupal Realname User Reference Information Disclosure
Posted Feb 16, 2010
Authored by Martin Barbella

The Realname User Reference widget in Drupal version 6.x-1.0 allows any user with access content permission to mine user name and real names from accounts.

tags | exploit, info disclosure
MD5 | facc4370bb0f3becb277a76265cba7e9
Drupal Twitter Module Credential Disclosure
Posted Feb 16, 2010
Authored by Justin C. Klein Keane

Drupal 6.15 with Twitter module version 6.x-2.6 suffers from a clear text credential storage vulnerability.

tags | exploit, info disclosure
MD5 | 28a374e9b98cc401707c02f28353cf71
Page 2 of 4
Back1234Next

File Archive:

July 2020

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Jul 1st
    15 Files
  • 2
    Jul 2nd
    19 Files
  • 3
    Jul 3rd
    12 Files
  • 4
    Jul 4th
    1 Files
  • 5
    Jul 5th
    2 Files
  • 6
    Jul 6th
    25 Files
  • 7
    Jul 7th
    35 Files
  • 8
    Jul 8th
    4 Files
  • 9
    Jul 9th
    9 Files
  • 10
    Jul 10th
    7 Files
  • 11
    Jul 11th
    4 Files
  • 12
    Jul 12th
    4 Files
  • 13
    Jul 13th
    14 Files
  • 14
    Jul 14th
    19 Files
  • 15
    Jul 15th
    11 Files
  • 16
    Jul 16th
    0 Files
  • 17
    Jul 17th
    0 Files
  • 18
    Jul 18th
    0 Files
  • 19
    Jul 19th
    0 Files
  • 20
    Jul 20th
    0 Files
  • 21
    Jul 21st
    0 Files
  • 22
    Jul 22nd
    0 Files
  • 23
    Jul 23rd
    0 Files
  • 24
    Jul 24th
    0 Files
  • 25
    Jul 25th
    0 Files
  • 26
    Jul 26th
    0 Files
  • 27
    Jul 27th
    0 Files
  • 28
    Jul 28th
    0 Files
  • 29
    Jul 29th
    0 Files
  • 30
    Jul 30th
    0 Files
  • 31
    Jul 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close