18 matches found
EUVD-2012-1579
Malware in sbrugna...
EUVD-2015-4386
Malware in sbrugna...
CVE-2012-1641
The finderimport function in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote authenticated users with the administer finder permission to execute arbitrary PHP code via admin/build/finder/import...
VBScan 0.1.7 - Black Box vBulletin Vulnerability Scanner
OWASP VBScan short for VBulletin Vulnerability Scanner is an opensource project in perl programming language to detect VBulletin CMS vulnerabilities and analyses them . Why OWASP VBScan ? If you want to do a penetration test on a vBulletin Forum, OWASP VBScan is Your best shot ever! This Project ...
CVE-2015-4363
Open redirect vulnerability in the finderformgoto function in the Finder module for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...
Open redirect
Open redirect vulnerability in the finderformgoto function in the Finder module for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...
CVE-2015-4363
CVE-2015-4363 is an open redirect vulnerability in the Finder module for Drupal, exploitable via the function finder_form_goto which allows phishing by redirecting users to arbitrary URLs. Affected are Finder 6.x-1.x (Drupal 6) and Finder module 7.x-x.x prior to 7.x-2.1 (Drupal 7). The Drupal SA-...
CVE-2015-4363
Open redirect vulnerability in the finderformgoto function in the Finder module for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors...
SA-CONTRIB-2015-067 - Finder - Open Redirect
Finder module allows you to create flexible faceted search forms to find entities such as nodes or users based on the values of fields and database attributes. The provided function finderformgoto is susceptible to a phishing attack. An attacker could formulate a redirect in a way that gets the...
CVE-2012-6645
Cross-site scripting XSS vulnerability in the autocomplete functionality in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote attackers to inject arbitrary web script or HTML via the title of a node, a different vulnerability than...
CVE-2012-1561
Cross-site scripting XSS vulnerability in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the "checkbox and radio button functionalities."...
Cross site scripting
Cross-site scripting XSS vulnerability in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the "checkbox and radio button functionalities."...
Cross site scripting
Cross-site scripting XSS vulnerability in the autocomplete functionality in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote attackers to inject arbitrary web script or HTML via the title of a node, a different vulnerability than...
CVE-2012-6645
CVE-2012-6645 is an XSS vulnerability affecting Drupal Finder module autocomplete. The issue allows injection of arbitrary script/HTML via the node title in Finder 6.x-1.x (before 6.x-1.26), 7.x-1.x, and 7.x-2.x (before 7.x-2.0-alpha8). The underlying flaw is cross-site scripting in the autocompl...
CVE-2012-1561
CVE-2012-1561 affects the Drupal Finder module (6.x-1.x before 6.x-1.26; 7.x-1.x; 7.x-2.x before 7.x-2.0-alpha8). The issue is a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the checkbox and radio b...
CVE-2012-1561
Cross-site scripting XSS vulnerability in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the "checkbox and radio button functionalities."...
CVE-2012-1641
The finderimport function in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote authenticated users with the administer finder permission to execute arbitrary PHP code via admin/build/finder/import...
CVE-2012-1641
The finderimport function in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote authenticated users with the administer finder permission to execute arbitrary PHP code via admin/build/finder/import...