12 matches found
EUVD-2013-0342
Malware in sbrugna...
EUVD-2010-2363
Malware in sbrugna...
EUVD-2010-2362
Malware in sbrugna...
The vulnerability of the cifs_compose_mount_options() function in the fs/cifs/cifs_dfs_ref.c module of the Linux kernel file system allows a hacker to cause a service failure.
The vulnerability of the cifscomposemountoptions function in the fs/cifs/cifsdfsref.c module of the Linux file system support module is related to the use of a NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
CVE-2013-0324
Cross-site scripting XSS vulnerability in the Rendered links formatter in the Menu Reference module 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with the "Administer menus and menu items" permission to inject arbitrary web script or HTML via the menu link title...
Attackers might be able to avoid calling reference modules when creating publications
Lines of code Vulnerability details Bug Description When comment, mirror or quote is called on a publication with a reference module, the reference module will be called. For example, when a user mirrors another publication with a reference module, the processMirror function of that reference...
Code injection
The Entity reference module 7.x-1.x before 7.x-1.1-rc1 for Drupal allows remote attackers to read private nodes titles by leveraging edit permissions to a node that references a private node...
CVE-2013-7066
CVE-2013-7066 affects the Drupal contributed module Entity reference (7.x-1.x) . Versions prior to 7.x-1.1-rc1 allow remote attackers to read the titles of private nodes by exploiting edit permissions on a node that references a private node. Root cause: the reference mechanism can disclose priva...
CVE-2013-7066
The Entity reference module 7.x-1.x before 7.x-1.1-rc1 for Drupal allows remote attackers to read private nodes titles by leveraging edit permissions to a node that references a private node...
Cross site scripting
Cross-site scripting XSS vulnerability in the Rendered links formatter in the Menu Reference module 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with the "Administer menus and menu items" permission to inject arbitrary web script or HTML via the menu link title...
CVE-2009-1342
Cross-site scripting XSS vulnerability in the CCK comment reference module 6.x before 6.x-1.2, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via certain comment titles associated with a node edit form...
CVE-2009-1342
The CVE-2009-1342 issue concerns the Drupal CCK comment reference module (6.x) prior to version 6.x-1.2. The vulnerability is a Cross-site Scripting (XSS) flaw that allows remote attackers to inject arbitrary web script or HTML through certain comment titles associated with a node edit form. No e...