Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.11 views

Fedora Update for drupal FEDORA-2008-7467

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.5CVSS6.7AI score0.02544EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.16 views

Fedora Update for drupal FEDORA-2008-7626

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.5CVSS6.7AI score0.02544EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2008/09/10 12:0 a.m.30 views

Fedora 9 : drupal-6.4-1.fc9 (2008-7626)

Update to 6.4, security fixes: SA-2008-047 http://drupal.org/node/295053 - multiple XSS issues CVE-2008-3740, CVE-2008-3741 - unrestricted upload vulnerability CVE-2008-3742 - multiple CSRF issues CVE-2008-3743, CVE-2008-3744 - upload module privilege escalation CVE-2008-3745 Remember to log in t...

6.5CVSS5.3AI score0.02544EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2008/08/27 3:21 p.m.19 views

CVE-2008-3741

The private filesystem in Drupal 5.x before 5.10 and 6.x before 6.4 trusts the MIME type sent by a web browser, which allows remote authenticated users to conduct cross-site scripting XSS attacks by uploading files containing arbitrary web script or HTML...

3.5CVSS6AI score0.0121EPSS
Exploits0References2
CVE
CVE
added 2008/08/27 3:0 p.m.50 views

CVE-2008-3741

Drupal 5.x before 5.10 and 6.x before 6.4 is affected. The private filesystem trusts the browser-supplied MIME type, allowing remote authenticated users to perform cross-site scripting by uploading files containing script/HTML. Affected components: Drupal core (private file handling) with XSS via...

3.5CVSS5.2AI score0.0121EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder