6 matches found
EUVD-2022-1818
Malicious code in bioql PyPI...
EUVD-2022-1758
Malicious code in bioql PyPI...
Sql injection
An SQL Injection vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table names or column names...
CVE-2011-2715
An SQL Injection vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table names or column names...
CVE-2011-2714
Drupal 6.20 with Data 6.x-1.0-alpha14 is affected by a cross-site scripting vulnerability due to insufficient sanitization of table descriptions, field names, or labels before display. The CVE-2011-2714 entry notes this issue, but the connected sources do not provide exploit details, active explo...
Уязвимости в Drupal
Здравствуйте 3APA3A! Сообщаю вам о найденных мною Full path disclosure и Insufficient Anti-automation уязвимостях в Drupal. Full path disclosure WASC-13: При POST запросе к странице с формой с использованием кириллического символа, выводится сообщение про ошибку, в котором выводится полный путь в...