Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2010/02/24 12:0 a.m.24 views

Debian DSA-1930-1 : drupal6 - several vulnerabilities

Several vulnerabilities have been found in drupal6, a fully-featured content management framework. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-2372 Gerhard Killesreiter discovered a flaw in the way user signatures are handled. It is possible for...

6.5CVSS5.6AI score0.02308EPSS
Exploits1References9
Debian
Debian
added 2009/11/07 12:46 a.m.28 views

[SECURITY] [DSA 1930-1] New drupal6 packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-1930-1 [email protected] http://www.debian.org/security/ Steffen Joeris November 07, 2009 http://www.debian.org/security/faq -...

6.5CVSS7.4AI score0.02308EPSS
Exploits1
OpenVAS
OpenVAS
added 2009/07/15 12:0 a.m.28 views

FreeBSD Ports: drupal5

The remote host is missing an update to the system as announced in the referenced advisory. VID be927298-6f97-11de-b444-001372fd0af2 OpenVAS Vulnerability Test $ Description: Auto generated from VID be927298-6f97-11de-b444-001372fd0af2 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

6.5CVSS6.3AI score0.02308EPSS
Exploits1
CVE
CVE
added 2009/07/08 3:0 p.m.63 views

CVE-2009-2372

CVE-2009-2372 affects Drupal 6.x prior to 6.13, where remote authenticated users could inject arbitrary HTML/JS (and possibly PHP) through crafted user signatures after the comment input format was changed to an administrator-controlled format. The issue arises from how user signatures are proces...

6.5CVSS6.5AI score0.02308EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder