Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-3086

Malware in sbrugna...

6.5CVSS6.4AI score0.01173EPSS
Exploits0References5
CNVD
CNVD
added 2016/07/20 12:0 a.m.2 views

Drupal Outline Designer Cross-Site Scripting Vulnerability

Drupal is a free, open source content management system developed in PHP and maintained by the Drupal community.Outline Designer is one of the user experience modules for library management. A cross-site scripting vulnerability exists in Drupal Outline Designer versions 7.x-2.x prior to 7.x-2.3,...

6.8AI score
Exploits0References1
Drupal
Drupal
added 2016/06/08 12:0 a.m.10 views

Outline Designer - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2016-035

This module enables you to mass administer book outlines and perform common operations through one interface, improving the usability for the book module. The module doesn't sufficiently sanitize titles when presenting them on this interface. This vulnerability is mitigated by the fact that an...

7AI score
Exploits0References11
Drupal
Drupal
added 2010/12/01 12:0 a.m.9 views

SA-CONTRIB-2010-105 - Outline Designer - Cross Site Request Forgery

Outline Designer allows for easier creation and management of items in a Book. The Outline Designer modules does not properly protect some of its paths against Cross Site Request Forgeries CSRF, allowing an attacker to get a user with the permission to administer site configuration to change any...

6.9AI score
Exploits0References7
NVD
NVD
added 2008/07/09 7:33 p.m.13 views

CVE-2008-3096

The Outline Designer module 5.x before 5.x-1.4 for Drupal changes each content reader's authentication level to match that of the content author, which might allow remote attackers to gain privileges...

6.5CVSS7.2AI score0.01173EPSS
Exploits0References4
Prion
Prion
added 2008/07/09 7:33 p.m.16 views

Authentication flaw

The Outline Designer module 5.x before 5.x-1.4 for Drupal changes each content reader's authentication level to match that of the content author, which might allow remote attackers to gain privileges...

6.5CVSS7.7AI score0.01173EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2008/07/09 7:0 p.m.18 views

CVE-2008-3096

The Outline Designer module 5.x before 5.x-1.4 for Drupal changes each content reader's authentication level to match that of the content author, which might allow remote attackers to gain privileges...

7.2AI score0.01173EPSS
Exploits0References4
CVE
CVE
added 2008/07/09 7:0 p.m.35 views

CVE-2008-3096

The CVE-2008-3096 issue affects the Drupal Outline Designer module (5.x before 5.x-1.4). The vulnerability arises because the module changes each content reader’s authentication level to match that of the content author, potentially allowing remote attackers to gain privileges. Documented affecte...

6.5CVSS7.2AI score0.01173EPSS
Exploits0References4Affected Software1
seebug.org
seebug.org
added 2008/07/07 12:0 a.m.24 views

Drupal Outline Designer Module 'outline_designer.module'安全绕过漏洞

BUGTRAQ ID: 30066 CNCAN ID:CNCAN-2008070703 Drupal Outline Designer是一款提供书目中可视的内容结构。 Drupal Outline Designer存在设计错误,远程攻击者可以利用漏洞获得对限制用户的内容查看。 目前没有详细漏洞细节提供。 Drupal Outline designer 5.x-1.3 升级到最新版本: http://drupal.org/node/277851...

6.9AI score
Exploits0
Drupal
Drupal
added 2008/07/02 12:0 a.m.11 views

SA-2008-043 - Outline designer - Privilege escalation

The Outline designer module provides a visual way of structuring content in books. A programming error in the module causes the current user to become authenticated as the author of the viewed content item. Versions affected Outline designer for Drupal 5.x prior to 5.x-1.4. Drupal core is not...

6.8AI score
Exploits0References3
Rows per page
Query Builder