Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

48 matches found

Cvelist
Cvelistadded 2019/03/14 7:0 a.m.15 views

CVE-2019-9765

In Blogmini 1.0, XSS exists via the author name of a comment reply in the app/main/views.py articleDetails function, related to app/templates/articlecomments.html...

6AI score0.0024EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2018/11/05 12:0 a.m.107 views

Drupal 7.x < 7.57 Multiple Vulnerabilities

According to its self-reported version number, the detected Drupal application is affected by multiple vulnerabilities : - A flaw exists with the Comment Reply Form. An authenticated remote attacker could add or view comments that they do not have access to. CVE-2017-6926 - A flaw exists with the...

8.1CVSS8.1AI score0.0139EPSS
Exploits1References6
Tenable Nessus
Tenable Nessusadded 2018/11/05 12:0 a.m.32 views

Drupal 8.x < 8.4.5 Multiple Vulnerabilities

According to its self-reported version number, the detected Drupal application is affected by multiple vulnerabilities : - A flaw exists with the Comment Reply Form. An authenticated remote attacker could add or view comments that they do not have access to. CVE-2017-6926 - A flaw exists with the...

8.1CVSS8.1AI score0.0139EPSS
Exploits1References6
Tenable Nessus
Tenable Nessusadded 2018/11/05 12:0 a.m.100 views

Drupal 8.5.x < 8.5.0-rc1 Multiple Vulnerabilities

According to its self-reported version number, the detected Drupal application is affected by multiple vulnerabilities : - A flaw exists with the Comment Reply Form. An authenticated remote attacker could add or view comments that they do not have access to. CVE-2017-6926 - A flaw exists with the...

8.1CVSS8.1AI score0.0139EPSS
Exploits1References6
Tenable Nessus
Tenable Nessusadded 2018/03/01 12:0 a.m.99 views

Drupal 8.x < 8.4.5 Multiple Vulnerabilities (SA-CORE-2018-001)

According to its self-reported version, the instance of Drupal running on the remote web server is 8.x prior to 8.4.5. It is, therefore, affected by multiple vulnerabilities : - A flaw exists with the Comment Reply Form. An authenticated remote attacker could add or view comments that they do not...

8.1CVSS7.4AI score0.0139EPSS
Exploits1References6
Tenable Nessus
Tenable Nessusadded 2018/02/26 12:0 a.m.52 views

FreeBSD : drupal -- Drupal Core - Multiple Vulnerabilities (57580fcc-1a61-11e8-97e0-00e04c1ea73d)

Drupal Security Team reports : CVE-2017-6926: Comment reply form allows access to restricted content CVE-2017-6927: JavaScript cross-site scripting prevention is incomplete CVE-2017-6928: Private file access bypass - Moderately Critical CVE-2017-6929: jQuery vulnerability with untrusted domains -...

8.1CVSS5.9AI score0.0139EPSS
Exploits1References8
FreeBSD
FreeBSDadded 2018/02/21 12:0 a.m.39 views

drupal -- Drupal Core - Multiple Vulnerabilities

Drupal Security Team reports: CVE-2017-6926: Comment reply form allows access to restricted content CVE-2017-6927: JavaScript cross-site scripting prevention is incomplete CVE-2017-6928: Private file access bypass - Moderately Critical CVE-2017-6929: jQuery vulnerability with untrusted domains -...

8.1CVSS6.7AI score0.0139EPSS
Exploits1
Friends Of PHP
Friends Of PHPadded 2018/02/20 9:35 p.m.20 views

Comment reply form allows access to restricted content.

More info at https://www.drupal.org/SA-CORE-2018-001...

8.1CVSS7.2AI score0.00366EPSS
Exploits1Affected Software1
Rows per page
Query Builder