5 matches found
EUVD-2012-1657
Malware in sbrugna...
CVE-2012-1647
Multiple cross-site scripting XSS vulnerabilities in the "stand alone PHP application for the OSM Player," as used in the MediaFront module 6.x-1.x before 6.x-1.5 and 7.x-1.x before 7.x-1.5 for Drupal, allow remote attackers to inject arbitrary web script or HTML via 1 $SERVER'HTTPHOST' or 2...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the "stand alone PHP application for the OSM Player," as used in the MediaFront module 6.x-1.x before 6.x-1.5 and 7.x-1.x before 7.x-1.5 for Drupal, allow remote attackers to inject arbitrary web script or HTML via 1 $SERVER'HTTPHOST' or 2...
CVE-2012-1647
CVE-2012-1647 affects the MediaFront Drupal module (Drupal 6.x: 6.x-1.x prior to 6.x-1.5; Drupal 7.x: 7.x-1.x prior to 7.x-1.5). The vulnerability is cross-site scripting via input in PHP library handling the stand-alone OSM Player, specifically through $_SERVER["HTTP_HOST"], $_SERVER["SCRIPT_NAM...
CVE-2012-1647
Multiple cross-site scripting XSS vulnerabilities in the "stand alone PHP application for the OSM Player," as used in the MediaFront module 6.x-1.x before 6.x-1.5 and 7.x-1.x before 7.x-1.5 for Drupal, allow remote attackers to inject arbitrary web script or HTML via 1 $SERVER'HTTPHOST' or 2...