Lucene search
K

5 matches found

NVD
NVD
added 2009/11/09 5:30 p.m.14 views

CVE-2009-3919

Cross-site scripting XSS vulnerability in the NGP COO/CWP Integration crmngp module 6.x before 6.x-1.12 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified "user-supplied information."...

4.3CVSS5.8AI score0.01223EPSS
Exploits0References6
Prion
Prion
added 2009/11/09 5:30 p.m.13 views

Design/Logic Flaw

An administration page in the NGP COO/CWP Integration crmngp module 6.x before 6.x-1.12 for Drupal does not perform the expected access control, which allows remote attackers to read log information via unspecified vectors...

5CVSS6.9AI score0.01442EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2009/11/09 5:30 p.m.14 views

CVE-2009-3920

An administration page in the NGP COO/CWP Integration crmngp module 6.x before 6.x-1.12 for Drupal does not perform the expected access control, which allows remote attackers to read log information via unspecified vectors...

5CVSS6.4AI score0.01442EPSS
Exploits0References6
Cvelist
Cvelist
added 2009/11/09 5:0 p.m.17 views

CVE-2009-3920

An administration page in the NGP COO/CWP Integration crmngp module 6.x before 6.x-1.12 for Drupal does not perform the expected access control, which allows remote attackers to read log information via unspecified vectors...

6.4AI score0.01442EPSS
Exploits0References6
Drupal
Drupal
added 2009/11/04 12:0 a.m.16 views

SA-CONTRIB-2009-094 - NGP COO/CWP Integration (crmngp) - Multiple Vulnerabilities

The NGP COO/CWP Integration module provides Drupal integration with the NGP Software API for efficient campaign management. An administration page did not properly implement access control thereby allowing untrusted users to view module log information. User-supplied information was not filtered ...

5.5AI score
Exploits0References7
Rows per page
Query Builder