15 matches found
CVE-2009-4517
Cross-site request forgery CSRF vulnerability in the FAQ Ask module 5.x and 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to hijack the authentication of arbitrary users for requests that access unpublished content...
CVE-2025-15374
A vulnerability was detected in EyouCMS up to 1.7.7. The affected element is an unknown function of the file application/home/model/Ask.php of the component Ask Module. Performing a manipulation of the argument content results in cross site scripting. The attack can be initiated remotely. The...
EUVD-2025-205874
A vulnerability was detected in EyouCMS up to 1.7.7. The affected element is an unknown function of the file application/home/model/Ask.php of the component Ask Module. Performing manipulation of the argument content results in cross site scripting. The attack can be initiated remotely. The explo...
CVE-2025-15374
A vulnerability was detected in EyouCMS up to 1.7.7. The affected element is an unknown function of the file application/home/model/Ask.php of the component Ask Module. Performing a manipulation of the argument content results in cross site scripting. The attack can be initiated remotely. The...
CVE-2025-15374
A vulnerability was detected in EyouCMS up to 1.7.7. The affected element is an unknown function of the file application/home/model/Ask.php of the component Ask Module. Performing a manipulation of the argument content results in cross site scripting. The attack can be initiated remotely. The...
CVE-2025-15374
CVE-2025-15374 affects EyouCMS up to 1.7.7. The vulnerability resides in the Ask Module (file: application/home/model/Ask.php) where manipulation of the content parameter enables cross-site scripting. The attack can be performed remotely, with exploits reportedly public. The vendor acknowledges t...
CVE-2025-15374
A vulnerability was detected in EyouCMS up to 1.7.7. The affected element is an unknown function of the file application/home/model/Ask.php of the component Ask Module. Performing a manipulation of the argument content results in cross site scripting. The attack can be initiated remotely. The...
CVE-2025-15374 EyouCMS Ask Module Ask.php cross site scripting
A vulnerability was detected in EyouCMS up to 1.7.7. The affected element is an unknown function of the file application/home/model/Ask.php of the component Ask Module. Performing a manipulation of the argument content results in cross site scripting. The attack can be initiated remotely. The...
CVE-2025-15374 EyouCMS Ask Module Ask.php cross site scripting
A vulnerability was detected in EyouCMS up to 1.7.7. The affected element is an unknown function of the file application/home/model/Ask.php of the component Ask Module. Performing a manipulation of the argument content results in cross site scripting. The attack can be initiated remotely. The...
PT-2025-54272
A vulnerability was detected in EyouCMS up to 1.7.7. The affected element is an unknown function of the file application/home/model/Ask.php of the component Ask Module. Performing manipulation of the argument content results in cross site scripting. The attack can be initiated remotely. The explo...
EUVD-2009-4500
Malware in sbrugna...
Cross site scripting
Cross-site scripting XSS vulnerability in the FAQ Ask module 5.x and 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2009-4534
The CVE-2009-4534 entry describes an Open Redirect in the Drupal FAQ Ask module 5.x/6.x up to 6.x-2.0, allowing remote attackers to redirect users to arbitrary sites and facilitate phishing via unspecified vectors. Affected component: Drupal FAQ Ask module; vulnerable part: redirect handling. Roo...
CVE-2009-4516
CVE-2009-4516 describes a cross-site scripting (XSS) vulnerability in the Drupal FAQ Ask module for 5.x and 6.x before 6.x-2.0. The flaw allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Affected software is the Drupal FAQ Ask module (versions 5.x/6.x prior t...
CVE-2009-4517
The CVE-2009-4517 issue affects the Drupal module FAQ Ask (versions 5.x and 6.x prior to 6.x-2.0). It is a CSRF vulnerability that allows remote attackers to hijack the authentication of arbitrary users for requests accessing unpublished content. The vulnerability is network-exploitable with no r...