4 matches found
CVE-2015-7234
The OSF module 7.x-3.x before 7.x-3.1 for Drupal, when the OSF Ontology and OSF Import modules are enabled, allows user-assisted remote attackers to delete arbitrary files via unspecified vectors...
CVE-2015-7234
The OSF module 7.x-3.x before 7.x-3.1 for Drupal, when the OSF Ontology and OSF Import modules are enabled, allows user-assisted remote attackers to delete arbitrary files via unspecified vectors...
CVE-2015-7234
The vulnerability CVE-2015-7234 affects the Drupal OSF module (7.x-3.x) prior to 7.x-3.1 when the OSF Ontology and OSF Import modules are enabled. A user-assisted remote attacker can delete arbitrary files via unspecified vectors. The issue is mitigated by upgrading to OSF 7.x-3.1 (as documented ...
OSF for Drupal - Critical - Multiple vulnerabilities - SA-CONTRIB-2015-134
The Open Semantic Framework OSF for Drupal is a middleware layer that allows structured data RDF and associated vocabularies ontologies to "drive" tailored tools and data displays within Drupal. The module is vulnerable to reflected Cross Site Scripting XSS because it did not sufficiently filter...