Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2010-1977

Malware in sbrugna...

2.1CVSS6.4AI score0.00269EPSS
Exploits0References7
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2014-8981

Malware in sbrugna...

4CVSS6.4AI score0.00151EPSS
Exploits0References4
CNVD
CNVDadded 2016/07/19 12:0 a.m.1 views

Drupal FileField Module Remote Denial of Service Vulnerability

Drupal is a free, open-source content management system developed in PHP and maintained by the Drupal community.FileField is one of the file upload components that uses the CCK feature extension. A remote denial of service vulnerability exists in versions 6.x-3.x of the Drupal FileField module...

7AI score
Exploits0References1
Drupal
Drupaladded 2016/02/24 12:0 a.m.10 views

FileField - Denial of Service - SA-CONTRIB-2016-008

FileField module allows users to upload files in conjunction with the Content Construction Kit CCK module in Drupal 6. The module doesn't validate that a request to delete a temporary file was made by the user who uploaded the file. An attacker can use this vulnerability to delete other user's fi...

7AI score
Exploits0References11
CVE
CVEadded 2014/12/01 4:0 p.m.32 views

CVE-2014-9156

The vulnerability CVE-2014-9156 affects the Drupal FileField module (6.x-3.x) prior to 6.x-3.13. The root cause is a failing permission check to view files when attaching an uploaded file, enabling remote authenticated users with permission to create or edit content to read private files. Affecte...

4CVSS6.3AI score0.00151EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2014/12/01 4:0 p.m.16 views

CVE-2014-9156

The FileField module 6.x-3.x before 6.x-3.13 for Drupal does not properly check permissions to view files, which allows remote authenticated users with permission to create or edit content to read private files by attaching an uploaded file...

6.2AI score0.00151EPSS
Exploits0References3
CVE
CVEadded 2010/06/21 7:0 p.m.40 views

CVE-2010-1958

The CVE-2010-1958 issue affects Drupal’s FileField module (5.x before 5.x-2.5 and 6.x before 6.x-3.4). A remote authenticated user with create/edit permissions and an enabled Path to File/URL to File display can inject arbitrary script/HTML via the file name (filepath parameter), i.e., an XSS vul...

2.1CVSS5.5AI score0.00269EPSS
Exploits0References6Affected Software1
Cvelist
Cvelistadded 2010/06/21 7:0 p.m.15 views

CVE-2010-1958

Cross-site scripting XSS vulnerability in the FileField module 5.x before 5.x-2.5 and 6.x before 6.x-3.4 for Drupal allows remote authenticated users, with create or edit permissions and 'Path to File' or 'URL to File' display enabled, to inject arbitrary web script or HTML via the file name...

5.4AI score0.00269EPSS
Exploits0References6
Drupal
Drupaladded 2009/10/20 12:0 a.m.3 views

SA-CONTRIB-2009-082 - Filefield module access bypass

The FileField module allows users to upload files through an AJAX-upload widget that can be added to content types through CCK. In the 3.1 version of FileField, the module would not restrict access to files based on node-access permissions when using Drupal core's private file system. Versions...

5.4AI score
Exploits0References5
Rows per page
Query Builder