625 matches found
CVE-2005-3975
CVE-2005-3975 is an interpretation conflict in Drupal that allowed remote authenticated users to inject arbitrary web script or HTML via a file with a GIF/JPEG extension. Affected versions include Drupal 4.5.0–4.5.5 and 4.6.0–4.6.3. The issue could execute HTML in Internet Explorer (per CVE-2005-...
CVE-2005-0682
Cross-site scripting XSS vulnerability in common.inc in Drupal before 4.5.2 allows remote attackers to inject arbitrary web script or HTML via certain inputs...
[SA14515] Drupal Unspecified Cross-Site Scripting Vulnerability
---------------------------------------------------------------------- Monitor, Filter, and Manage Security Information - Filtering and Management of Secunia advisories - Overview, documentation, and detailed reports - Alerting via email and SMS Request Trial: https://ca.secunia.com/?f=l...
Drupal 4.14.2 - Cross-Site Scripting
Drupal 4.14.2 - Cross-Site Scripting source: https://www.securityfocus.com/bid/8235/info The Drupal content management system is prone to a cross-site scripting vulnerability. This issue is exposed through the main page and through other sub-pages. An attacker may exploit this issue by including...
Drupal 4.1/4.2 - Cross-Site Scripting
source: https://www.securityfocus.com/bid/8235/info The Drupal content management system is prone to a cross-site scripting vulnerability. This issue is exposed through the main page and through other sub-pages. An attacker may exploit this issue by including hostile HTML and script code in a...