CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-6512

Malware in sbrugna...

7.5CVSS6.4AI score0.00554EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2006-6511

Malware in sbrugna...

7.5CVSS6.4AI score0.00717EPSS

Exploits0References4

RedhatCVE•added 2025/05/21 7:56 p.m.•4 views

CVE-2006-6529

The Chatroom Module before 4.7.x.-1.0 for Drupal displays private messages in a chatroom's last messages overview, which allows remote attackers to obtain sensitive information by reading the overview...

7.5CVSS6.5AI score0.00554EPSS

Exploits0References1

Drupal•added 2011/02/02 12:0 a.m.•12 views

SA-CONTRIB-2011-008 - Chatroom - Cross Site Scripting (XSS) and Cross Site Request Forgery

The Chatroom module provides real-time chat capabilities to Drupal. Vulnerability: Cross Site Scripting The module does not properly escape the contents of chat messages in pages listing the chats contained in a chatroom, leading to a Cross Site Scripting XSS vulnerability. Any user with permissi...

5.5AI score

Exploits0References10

NVD•added 2006/12/14 1:28 a.m.•10 views

CVE-2006-6528

The Chatroom Module before 4.7.x.-1.0 for Drupal broadcasts Chatroom visitors' session IDs to all participants, which allows remote attackers to hijack sessions and gain privileges...

7.5CVSS6.9AI score0.00717EPSS

Exploits0References3

NVD•added 2006/12/14 1:28 a.m.•14 views

CVE-2006-6529

7.5CVSS6.2AI score0.00554EPSS

Exploits0References2

CVE•added 2006/12/14 1:0 a.m.•45 views

CVE-2006-6528

CVE-2006-6528 affects the Drupal Chatroom Module (versions before 4.7.x.-1.0). The vulnerability arises because the module broadcasts visitors’ session IDs to all participants, enabling remote attackers to hijack sessions and gain privileges. The published description explicitly states the impact...

7.5CVSS7.3AI score0.00717EPSS

Exploits0References3Affected Software1

Cvelist•added 2006/12/14 1:0 a.m.•16 views

CVE-2006-6528

The Chatroom Module before 4.7.x.-1.0 for Drupal broadcasts Chatroom visitors' session IDs to all participants, which allows remote attackers to hijack sessions and gain privileges...

6.9AI score0.00717EPSS

Exploits0References3

Cvelist•added 2006/12/14 1:0 a.m.•19 views

CVE-2006-6529

6.2AI score0.00554EPSS

Exploits0References2

CVE•added 2006/12/14 1:0 a.m.•48 views

CVE-2006-6529

CVE-2006-6529 affects the Drupal Chatroom Module in versions before 4.7.x-1.0. The vulnerability arises because the module displays private messages in the chatroom’s last messages overview, allowing remote attackers to read sensitive information via the overview. Impact: information disclosure o...

7.5CVSS6.5AI score0.00554EPSS

Exploits0References2Affected Software1

securityvulns•added 2006/12/11 12:0 a.m.•44 views

[SA23343] Drupal Chatroom Module Session ID Information Disclosure

TITLE: Drupal Chatroom Module Session ID Information Disclosure SECUNIA ADVISORY ID: SA23343 VERIFY ADVISORY: http://secunia.com/advisories/23343/ CRITICAL: Moderately critical IMPACT: Hijacking, Exposure of sensitive information WHERE: From remote SOFTWARE: Drupal Chatroom Module 4.x...

1.7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by