CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2026/01/09 11:53 a.m.•5 views

CVE-2009-4516

Cross-site scripting XSS vulnerability in the FAQ Ask module 5.x and 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6AI score0.00256EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 11:48 a.m.•3 views

CVE-2009-4517

Cross-site request forgery CSRF vulnerability in the FAQ Ask module 5.x and 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to hijack the authentication of arbitrary users for requests that access unpublished content...

6.8CVSS7.6AI score0.00108EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2009-4500

Malware in sbrugna...

4.3CVSS6.4AI score0.00174EPSS

Exploits0References3

Prion•added 2009/12/31 7:30 p.m.•10 views

Cross site scripting

Cross-site scripting XSS vulnerability in the FAQ Ask module 5.x and 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.2AI score0.00256EPSS

Exploits0References4Affected Software1

Prion•added 2009/12/31 7:30 p.m.•12 views

Open redirect

Open redirect vulnerability in the FAQ Ask module 5.x and 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...

4.3CVSS7.2AI score0.00174EPSS

Exploits0References2Affected Software1

Prion•added 2009/12/31 7:30 p.m.•6 views

Cross site request forgery (csrf)

6.8CVSS7.8AI score0.00108EPSS

Exploits0References3Affected Software1

NVD•added 2009/12/31 7:30 p.m.•6 views

CVE-2009-4517

6.8CVSS7.2AI score0.00108EPSS

Exploits0References3

NVD•added 2009/12/31 7:30 p.m.•8 views

CVE-2009-4534

4.3CVSS6.7AI score0.00174EPSS

Exploits0References2

CVE•added 2009/12/31 7:0 p.m.•40 views

CVE-2009-4517

The CVE-2009-4517 issue affects the Drupal module FAQ Ask (versions 5.x and 6.x prior to 6.x-2.0). It is a CSRF vulnerability that allows remote attackers to hijack the authentication of arbitrary users for requests accessing unpublished content. The vulnerability is network-exploitable with no r...

6.8CVSS7.2AI score0.00108EPSS

Exploits0References3Affected Software1

CVE•added 2009/12/31 7:0 p.m.•43 views

CVE-2009-4516

CVE-2009-4516 describes a cross-site scripting (XSS) vulnerability in the Drupal FAQ Ask module for 5.x and 6.x before 6.x-2.0. The flaw allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Affected software is the Drupal FAQ Ask module (versions 5.x/6.x prior t...

4.3CVSS5.7AI score0.00256EPSS

Exploits0References4Affected Software1

Drupal•added 2009/10/28 12:0 a.m.•9 views

SA-CONTRIB-2009-087 - FAQ Ask - Multiple Vulnerabilities

The FAQ Ask module enables site users to ask questions for experts to answer. The module suffers multiple vulnerabilities, including Cross Site Request Forgeries CSRF and Cross Site Scripting problems Cross Site Scripting. These vulnerabilities allow an attacker to hijack the account of a logged ...

6.7AI score

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by