Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.24 views

FreeBSD Ports: drupal

The remote host is missing an update to the system as announced in the referenced advisory. VID 6da7344b-128a-11db-b25f-00e00c69a70d OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

2.6CVSS6.4AI score0.02536EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.38 views

Debian Security Advisory DSA 1125-2 (drupal)

The remote host is missing an update to drupal announced via advisory DSA 1125-2. The Drupal update in DSA 1125 contained a regression. This update corrects this flaw. For completeness, the original advisory text below: Several remote vulnerabilities have been discovered in the Drupal web site...

7.5CVSS0.7AI score0.11115EPSS
Exploits0
OSV
OSV
added 2006/07/26 12:0 a.m.32 views

DSA-1125 drupal - several

Bulletin has no description...

7.5CVSS6AI score0.11115EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2006/06/06 12:2 a.m.38 views

CVE-2006-2833

Cross-site scripting XSS vulnerability in the taxonomy module in Drupal 4.6.8 and 4.7.2 allows remote attackers to inject arbitrary web script or HTML via inputs that are not properly validated when the page title is output, possibly involving the $names variable...

2.6CVSS6.1AI score0.02536EPSS
Exploits0References1
Cvelist
Cvelist
added 2006/06/06 12:0 a.m.26 views

CVE-2006-2833

Cross-site scripting XSS vulnerability in the taxonomy module in Drupal 4.6.8 and 4.7.2 allows remote attackers to inject arbitrary web script or HTML via inputs that are not properly validated when the page title is output, possibly involving the $names variable...

5.5AI score0.02536EPSS
Exploits0References10
CVE
CVE
added 2006/06/06 12:0 a.m.63 views

CVE-2006-2833

Drupal CVE-2006-2833 represents a cross-site scripting flaw in the taxonomy module affecting Drupal 4.6.8 and 4.7.2. The vulnerability arises when outputting the page title, with inputs not properly validated (potential involvement of the $names variable), allowing remote attackers to inject arbi...

2.6CVSS5.5AI score0.02536EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder