4 matches found
Crlf injection
CRLF injection vulnerability in the drupalgoto function in includes/common.inc Drupal 4.7.x before 4.7.8 and 5.x before 5.3 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors...
dotWidget CMS <= 1.0.6 (file_path) Remote File Include Vulnerabilities
No description provided by source. Title: dotWidget CMS = 1.0.6 - Remote File Include Vulnerability ----------------------------------------------------------------- Vendor: dotWidget URL: http://dotwigdet.com ----------------------------------------------------------------- Credits: Discovered b...
CVE-2005-0682
Cross-site scripting XSS vulnerability in common.inc in Drupal before 4.5.2 allows remote attackers to inject arbitrary web script or HTML via certain inputs...
CVE-2005-0682
Cross-site scripting XSS vulnerability in common.inc in Drupal before 4.5.2 allows remote attackers to inject arbitrary web script or HTML via certain inputs...