EUVD-2013-5772

Malware in sbrugna...

EUVD-2013-5771

Malware in sbrugna...

CVE-2013-5937

Cross-site request forgery CSRF vulnerability in the Click2Sell Suite module 6.x-1.x for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete database information via vectors involving the Drupal Form API...

CVE-2013-5938

Cross-site scripting XSS vulnerability in the Click2Sell Suite module 6.x-1.x for Drupal allows remote attackers to inject arbitrary web script or HTML via a confirmation form...

CVE-2013-5937

Cross-site request forgery CSRF vulnerability in the Click2Sell Suite module 6.x-1.x for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete database information via vectors involving the Drupal Form API...

CVE-2013-5938

Cross-site scripting XSS vulnerability in the Click2Sell Suite module 6.x-1.x for Drupal allows remote attackers to inject arbitrary web script or HTML via a confirmation form...

CVE-2013-5938

CVE-2013-5938 corresponds to a cross-site scripting (XSS) vulnerability in the Drupal Click2Sell Suite module 6.x-1.x. The vulnerability affects the module’s confirmation form handling, enabling remote attackers to inject arbitrary script/HTML. Public details from the Drupal security advisory SA-...

CVE-2013-5937

CVE-2013-5937 affects the Drupal Click2Sell Suite module (6.x-1.x). The CSRF vulnerability allows remote attackers to hijack administrator authentication for requests that delete database information via Drupal Form API vectors. Affected component is the Click2Sell Suite module; root cause is imp...