14 matches found
EUVD-2012-5538
Malware in sbrugna...
CVE-2012-5654
The Nodewords: D6 Meta Tags module before 6.x-1.14 for Drupal, when configured to automatically generate description meta tags from node text, does not properly filter node content when creating tags, which might allow remote attackers to obtain sensitive information by reading the 1 description,...
[SECURITY] Fedora 25 Update: drupal7-metatag-1.21-1.fc25
The Metatag module allows you to automatically provide structured metadata, aka "meta tags", about your website. In the context of search engine optimization, when people refer to meta tags they are usually referring to the meta description tag and the meta keywords tag that may help improve the...
[SECURITY] Fedora 24 Update: drupal7-metatag-1.21-1.fc24
The Metatag module allows you to automatically provide structured metadata, aka "meta tags", about your website. In the context of search engine optimization, when people refer to meta tags they are usually referring to the meta description tag and the meta keywords tag that may help improve the...
CVE-2012-5654
The Nodewords: D6 Meta Tags module before 6.x-1.14 for Drupal, when configured to automatically generate description meta tags from node text, does not properly filter node content when creating tags, which might allow remote attackers to obtain sensitive information by reading the 1 description,...
Design/Logic Flaw
The Nodewords: D6 Meta Tags module before 6.x-1.14 for Drupal, when configured to automatically generate description meta tags from node text, does not properly filter node content when creating tags, which might allow remote attackers to obtain sensitive information by reading the 1 description,...
CVE-2012-5654
The Nodewords: D6 Meta Tags module before 6.x-1.14 for Drupal, when configured to automatically generate description meta tags from node text, does not properly filter node content when creating tags, which might allow remote attackers to obtain sensitive information by reading the 1 description,...
CVE-2012-5654
The CVE concerns Nodewords: D6 Meta Tags module for Drupal (pre-6.x-1.14). The flaw is that when configured to auto-generate description meta tags from node text, it does not properly filter node content, allowing remote attackers to read sensitive information via the description, dc.description,...
SA-CONTRIB-2012-173 - Nodewords: Information disclosure
This module enables you to assign meta tags on Drupal 6 sites to aid with 3rd party search indexing and sharing on social networks. The module doesn't correctly filter node content when configured to automatically generate descriptions meta tags from the node text. This lack of filtering could...
CVE-2009-3442
The Meta tags aka Nodewords module before 6.x-1.1 for Drupal does not properly follow permissions during assignment of node meta tags, which allows remote attackers to obtain sensitive information via unspecified vectors...
SA-CONTRIB-2009-060 - Meta tags (Nodewords) - Access bypass
The Meta tags also known as Nodewords module provides meta tags based on node titles. In certain conditions, the node meta tags were not respecting access permissions, potentially exposing content not available otherwise. Versions affected Meta tags for Drupal 6.x before Meta tags 6.x-1.1 Drupal...
Code injection
Unspecified vulnerability in the Meta Tags aka Nodewords 5.x-1.6 module for Drupal, when images are permitted in node bodies, allows remote authenticated users to execute arbitrary code via unspecified vectors involving creation of a node...
CVE-2008-0264
The CVE-2008-0264 entry concerns the Drupal Meta Tags (aka Nodewords) 5.x-1.6 module. When images are allowed in node bodies, remote authenticated users can cause arbitrary code execution via unspecified vectors tied to node creation. Exploit details, affected versions beyond the stated 5.x-1.6, ...
SA-2008-008 - Meta tags - Arbitrary code execution
The Meta tags module, also known as Nodewords, adds HTML META tags to node, panel and view pages. If the site is configured to allow images in the body of any node type, any user that can create this node type is able to execute arbitrary code on the server. Versions affected Meta tags for Drupal...