8 matches found
EUVD-2010-2021
Malware in sbrugna...
CVE-2010-2001
Cross-site scripting XSS vulnerability in the CiviRegister module before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via the URI...
CVE-2010-2001
Cross-site scripting XSS vulnerability in the CiviRegister module before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via the URI...
Cross site scripting
Cross-site scripting XSS vulnerability in the CiviRegister module before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via the URI...
CVE-2010-2001
Cross-site scripting XSS vulnerability in the CiviRegister module before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via the URI...
CVE-2010-2001
The CVE-2010-2001 issue affects the Drupal CiviRegister module, specifically versions before 6.x-1.1. The vulnerability is an XSS exposure where an attacker can inject arbitrary script or HTML via the request URI. The Connected documents confirm the affected component and the attack vector as des...
CVE-2010-2001
Cross-site scripting XSS vulnerability in the CiviRegister module before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via the URI...
SA-CONTRIB-2010-048: CiviRegister - Cross Site Scripting
The CiviRegister module replaces the standard Drupal user registration form with a CiviCRM Profile form configured to create users. Notifications on the Profile's administrative page include unsanitized data obtained from the URL. A malicious user could create a special link which would inject...