Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-4512

Malware in sbrugna...

7.5CVSS6.4AI score0.01063EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.22 views

EUVD-2008-4511

Malware in sbrugna...

3.5CVSS6.4AI score0.00842EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-4319

Malware in sbrugna...

6CVSS6.3AI score0.01094EPSS
Exploits1References8
Drupal
Drupal
added 2017/10/25 12:0 a.m.20 views

Brilliant Gallery - Highly critical - Multiple Vulnerabilities - SA-CONTRIB-2017-079

This module enables you to display any number of galleries based on images located in the files folder. The module doesn't sufficiently sanitize various database queries which may allow attackers to craft requests resulting in an SQL injection vulnerability. This vulnerability could be exploited...

6.8AI score
Exploits0References5
NVD
NVD
added 2008/10/09 6:14 p.m.15 views

CVE-2008-4530

Cross-site scripting XSS vulnerability in Brilliant Gallery 5.x before 5.x-4.2, a module for Drupal, allows remote authenticated users with permissions to inject arbitrary web script or HTML via unspecified vectors related to posting of answers...

3.5CVSS5.3AI score0.00842EPSS
Exploits0References4
NVD
NVD
added 2008/10/09 6:14 p.m.14 views

CVE-2008-4531

SQL injection vulnerability in Brilliant Gallery 5.x before 5.x-4.2, a module for Drupal, allows remote attackers to execute arbitrary SQL commands via unspecified vectors, related to queries. NOTE: this might be the same issue as CVE-2008-4338...

7.5CVSS8.2AI score0.01063EPSS
Exploits0References4
Prion
Prion
added 2008/10/09 6:14 p.m.16 views

Sql injection

SQL injection vulnerability in Brilliant Gallery 5.x before 5.x-4.2, a module for Drupal, allows remote attackers to execute arbitrary SQL commands via unspecified vectors, related to queries. NOTE: this might be the same issue as CVE-2008-4338...

7.5CVSS8.7AI score0.01094EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2008/10/09 6:0 p.m.17 views

CVE-2008-4531

SQL injection vulnerability in Brilliant Gallery 5.x before 5.x-4.2, a module for Drupal, allows remote attackers to execute arbitrary SQL commands via unspecified vectors, related to queries. NOTE: this might be the same issue as CVE-2008-4338...

8.2AI score0.01063EPSS
Exploits0References4
CVE
CVE
added 2008/10/09 6:0 p.m.41 views

CVE-2008-4531

CVE-2008-4531 covers a SQL injection in Brilliant Gallery 5.x (Drupal module) before 5.x-4.2, enabling an attacker to inject arbitrary SQL via unspecified vectors. The vulnerability relates to the broader issue described in CVE-2008-4338, which specifies the brilliant_gallery_checklist_save funct...

7.5CVSS8.3AI score0.01063EPSS
Exploits0References4Affected Software1
Drupal
Drupal
added 2008/10/01 12:0 a.m.11 views

SA-2008-059 - Brilliant Gallery - SQL Injection and Cross Site Scripting

The Brilliant Gallery module allows users to publish photos in galleries. Two vulnerabilities were found in the module. SQL Injection Brilliant Gallery does not properly use the Drupal database API and inserts values from URLs directly into queries. This can be exploited to perform SQL Injection...

7.3AI score
Exploits0References5
NVD
NVD
added 2008/09/30 5:22 p.m.20 views

CVE-2008-4338

SQL injection vulnerability in the brilliantgallerychecklistsave function in the bgchecklist/save script in Brilliant Gallery 5.x and 6.x, a module for Drupal, allows remote authenticated users with "access brilliantgallery" permissions to execute arbitrary SQL commands via the 1 nid, 2 qid, 3...

6CVSS7.9AI score0.01094EPSS
Exploits1References7
Cvelist
Cvelist
added 2008/09/30 5:0 p.m.19 views

CVE-2008-4338

SQL injection vulnerability in the brilliantgallerychecklistsave function in the bgchecklist/save script in Brilliant Gallery 5.x and 6.x, a module for Drupal, allows remote authenticated users with "access brilliantgallery" permissions to execute arbitrary SQL commands via the 1 nid, 2 qid, 3...

7.9AI score0.01094EPSS
Exploits1References7
CVE
CVE
added 2008/09/30 5:0 p.m.48 views

CVE-2008-4338

The CVE-2008-4338 issue is a SQL injection vulnerability in the Brilliant Gallery Drupal module (versions 5.x and 6.x). It affects the brilliant_gallery_checklist_save function in bgchecklist/save, allowing remote authenticated users with the access brilliant_gallery permission to inject arbitrar...

6CVSS7.9AI score0.01094EPSS
Exploits1References7Affected Software1
Drupal
Drupal
added 2008/09/25 12:0 a.m.15 views

SA-2008-058 - Brilliant Gallery - SQL Injection

The module does not properly use Drupal's database API and inserts values supplied by users directly into queries. This can be exploited by malicious users with the "access brilliantgallery" permission to perform SQL Injection attacks. These attacks may lead to the malicious user gaining...

8.5AI score
Exploits0References3
Rows per page
Query Builder