13 matches found
EUVD-2006-4110
Malware in sbrugna...
EUVD-2020-18140
Malware in sbrugna...
CVE-2020-25454
Cross-site Scripting XSS vulnerability in grocy 2.7.1 via the add recipe module, which gets executed when deleting the recipe...
CVE-2020-25454
CVE-2020-25454 affects grocy 2.7.1: a Cross-site Scripting (XSS) vulnerability in the add recipe module that executes when deleting a recipe. The issue is described as a stored XSS caused by input in the add recipe flow, with exploitation steps and payload demonstrated in the PacketStorm PoC for ...
CVE-2020-25454
Cross-site Scripting XSS vulnerability in grocy 2.7.1 via the add recipe module, which gets executed when deleting the recipe...
PHP-Nuke Recipe Module 1.3 - 'recipeid' Parameter SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/27955/info The Recipe module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...
PHP-Nuke Recipe Module 1.3 - 'recipeid' SQL Injection
source: https://www.securityfocus.com/bid/27955/info The Recipe module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application,...
PHP-Nuke Recipe Module 1.3 - recipeid SQL Injection
PHP-Nuke Recipe Module 1.3 - recipeid SQL Injection source: https://www.securityfocus.com/bid/27955/info The Recipe module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue...
CVE-2006-4120
Cross-site scripting XSS vulnerability in the Recipe module recipe.module before 1.54 for Drupal 4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2006-4120
The CVE-2006-4120 entry documents a cross-site scripting (XSS) vulnerability in Drupal’s Recipe module (recipe.module) prior to version 1.54, affecting Drupal 4.6 and earlier. The underlying issue is an XSS flaw in the Recipe module that allows remote attackers to inject arbitrary web scripts or ...
CVE-2006-4120
Cross-site scripting XSS vulnerability in the Recipe module recipe.module before 1.54 for Drupal 4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
Revision to DRUPAL-SA-2006-013 - Recipe
It is possible for a malicious user to insert and execute XSS Cross Site Scripting, due to lack of validation on output from the contributed Recipe module. This may lead to administrator access if certain conditions are met. Learn more about XSS on Wikipedia. This is a revision to...
DRUPAL-SA-2006-013: Recipe module
It is possible for a malicious user to insert and execute XSS, due to lack of validation on output. Versions affected Please check the CVS $Id$ field in the file recipe.module to determine whether the version you are running is vulnerable. Versions older than the following are vulnerable: // $Id:...