12 matches found
EUVD-2015-5459
Malware in sbrugna...
novalnet.de XSS vulnerability
Vulnerable URL: https://www.novalnet.de/search/node/%22%3e%3cimg%20src=x%20onerror=prompt'OPENBUGBOUNTY'%3e/n Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 181489 VIP website status:| No Coordinated Disclosure...
novalnet.de XSS vulnerability
Vulnerable URL: http://www.novalnet.de/search/node/%22%3E%3Cimg%20src=x%20onerror=prompt'OPENBUGBOUNTY'%3E\n Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 187825 VIP website status:| No Coordinated Disclosure...
novalnet.de XSS vulnerability
Vulnerable URL: https://www.novalnet.de/search/node/%22%3e%3cimg%20src=x%20onerror=prompt'OPENBUGBOUNTY'%3e Details: Description| Value ---|--- Patched:| Yes, at 22.11.2017 Latest check for patch:| 22.11.2017 15:03 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank|...
CVE-2015-5504
SQL injection vulnerability in the Novalnet Payment Module Ubercart module for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
Sql injection
SQL injection vulnerability in the Novalnet Payment Module Ubercart module for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2015-5504
CVE-2015-5504 describes an SQL injection in the Novalnet Payment Module Ubercart for Drupal. The vulnerability stems from failing to sanitize a database query via user-controlled input, allowing remote attackers to execute arbitrary SQL commands via unspecified vectors. Affected products: Novalne...
CVE-2015-5504
SQL injection vulnerability in the Novalnet Payment Module Ubercart module for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
Drupal Novalnet Payment - Ubercart Module SQL Injection Vulnerability
Drupal is a free and open source content management system developed in PHP.Novalnet Payment is a payment module. A SQL injection vulnerability exists in the Drupal Novalnet Payment - Ubercart module due to the program failing to adequately filter user-supplied input. The vulnerability allows...
Drupal Novalnet Payment Module SQL Injection Vulnerability
Drupal is a free and open source content management system developed in PHP.Novalnet Payment is a payment module. Drupal Novalnet Payment has a SQL injection vulnerability due to the program failing to adequately filter user-supplied input. The vulnerability allows remote attackers to submit...
Novalnet Payment Module Drupal Commerce - Critical - SQL Injection - Unsupported - SA-CONTRIB-2015-117
This module enables you add the Novalnet payment service provider to Drupal Commerce. The module fails to sanitize a database query by not using the database API properly, thereby leading to a SQL Injection vulnerability. Since the affected path is not protected against CSRF, a malicious user can...
Novalnet Payment Module Ubercart - Critical - SQL Injection - Unsupported - SA-CONTRIB-2015-116
This module enables you add the Novalnet payment service provider to Ubercart. The module fails to sanitize a database query by not using the database API properly, thereby leading to a SQL Injection vulnerability. Since the affected path is not protected against CSRF, a malicious user can exploi...