EUVD-2015-4389

Malware in sbrugna...

The vulnerability of the datamover module of the Linux operating system-based backup software NovaBACKUP allows a hacker to execute arbitrary commands.

The vulnerability of the datamover module of the Linux operating system-based NovaBACKUP data center backup software exists due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

Cross site scripting

Cross-site scripting XSS vulnerability in the Mover module 6.x-1.0 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors...

CVE-2015-4366

CVE-2015-4366 affects Drupal’s contributed Mover module (6.x-1.0). The issue stems from insufficient sanitization of user-supplied text in certain pages, enabling Cross-Site Scripting (XSS) by remote authenticated users who have permissions to create/edit nodes. No exploit details provided beyond...

Drupal Mover Module Cross-Site Scripting Vulnerability

Drupal is a free, open source content management system developed in PHP and maintained by the Drupal community.Mover is one of the modules used to provide content movement between Drupal sites. A cross-site scripting vulnerability exists in the Drupal Mover module that stems from the program's...