Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2009-3885

Malware in sbrugna...

4.3CVSS6.4AI score0.00404EPSS
Exploits0References7
NVD
NVDadded 2015/01/09 6:59 p.m.10 views

CVE-2014-9498

Cross-site scripting XSS vulnerability in the Webform Invitation module 7.x-1.x before 7.x-1.3 and 7.x-2.x before 7.x-2.4 for Drupal allows remote authenticated users with the Webform: Create new content, Webform: Edit own content, or Webform: Edit any content permission to inject arbitrary web...

3.5CVSS5.3AI score0.00232EPSS
Exploits0References5
Drupal
Drupaladded 2014/12/03 12:0 a.m.15 views

SA-CONTRIB-2014-116 - Webform Invitation - Cross Site Scripting (XSS)

This module enables you to create custom invitation codes for Webforms. The module failed to sanitize node titles. This vulnerability is mitigated by the fact that an attacker must have a role with the permission "Webform: Create new content", "Webform: Edit own content" and/or "Webform: Edit any...

3.5CVSS6.4AI score0.00232EPSS
Exploits0References10
NVD
NVDadded 2014/04/29 2:38 p.m.9 views

CVE-2013-7063

The Invitation module 7.x-2.x for Drupal does not properly check permissions, which allows remote attackers to obtain sensitive information via unspecified default views...

5CVSS6.2AI score0.00214EPSS
Exploits0References3
Prion
Prionadded 2014/04/29 2:38 p.m.9 views

Default configuration

The Invitation module 7.x-2.x for Drupal does not properly check permissions, which allows remote attackers to obtain sensitive information via unspecified default views...

5CVSS6.8AI score0.00214EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCveadded 2014/04/29 2:38 p.m.16 views

CVE-2013-7063

The Invitation module 7.x-2.x for Drupal does not properly check permissions, which allows remote attackers to obtain sensitive information via unspecified default views...

5CVSS5.9AI score0.00214EPSS
Exploits0References2
CVE
CVEadded 2014/04/29 2:0 p.m.43 views

CVE-2013-7063

The CVE-2013-7063 issue affects the Drupal Invitation module (7.x-2.x) through vulnerable access checks. The module does not adequately enforce permissions, allowing remote attackers to obtain sensitive information via default views. Affected versions are Invitation 7.x-2.x prior to 7.x-2.2; Drup...

5CVSS6.4AI score0.00214EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2014/04/29 2:0 p.m.14 views

CVE-2013-7063

The Invitation module 7.x-2.x for Drupal does not properly check permissions, which allows remote attackers to obtain sensitive information via unspecified default views...

6.2AI score0.00214EPSS
Exploits0References3
Drupal
Drupaladded 2013/11/20 12:0 a.m.13 views

SA-CONTRIB-2013-093 - Invitation - Access Bypass

The Invitation module restricts registration to users who have an invite code for running a private beta. The module provides default views that don't check access to views prior to displaying private information like usernames and email addresses. CVE identifiers issued CVE-2013-7063 Versions...

5CVSS6.3AI score0.00214EPSS
Exploits0References9
CVE
CVEadded 2009/11/09 5:0 p.m.40 views

CVE-2009-3914

The CVE-2009-3914 entry concerns Drupal’s Temporary Invitation module (5.x) with versions before 5.x-2.3. The vulnerability is a cross-site scripting (XSS) flaw that allows remote attackers to inject arbitrary script/HTML via the Name field in an invitation. Impact is partial integrity of affecte...

4.3CVSS5.8AI score0.00404EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder