5 matches found
EUVD-2009-3887
Malware in sbrugna...
CVE-2012-2728
Multiple cross-site request forgery CSRF vulnerabilities in the Node Hierarchy module 6.x-1.x before 6.x-1.5 for Drupal allow remote attackers to hijack the authentication of administrators for requests that change a node hierarchy position via an 1 up or 2 down action...
CVE-2012-2728
CVE-2012-2728 affects the Drupal Node Hierarchy module (6.x-1.x) prior to 6.x-1.5. The vulnerability allows CSRF that can hijack an administrator’s session to reorder node hierarchy via up/down actions. Impact is admin-authentication compromise leading to unintended hierarchy changes. Remediation...
CVE-2012-2728
Multiple cross-site request forgery CSRF vulnerabilities in the Node Hierarchy module 6.x-1.x before 6.x-1.5 for Drupal allow remote attackers to hijack the authentication of administrators for requests that change a node hierarchy position via an 1 up or 2 down action...
CVE-2009-3916
CVE-2009-3916 concerns the Drupal Node Hierarchy module. The vulnerability allows remote attackers to inject arbitrary web script or HTML via a child node title, affecting module releases prior to 5.x-1.3 and 6.x-1.3. The issue arises from an XSS flaw in the processing of node titles, enabling at...