CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2008-4576

Malware in sbrugna...

4.3CVSS6.3AI score0.00322EPSS

NVD•added 2009/12/31 7:30 p.m.•9 views

CVE-2009-4514

3.5CVSS5.3AI score0.00207EPSS

Exploits0References5

Prion•added 2009/12/31 7:30 p.m.•11 views

Cross site scripting

3.5CVSS5.7AI score0.00207EPSS

Exploits0References5Affected Software1

Cvelist•added 2009/12/31 7:0 p.m.•16 views

CVE-2009-4514

5.3AI score0.00207EPSS

Exploits0References5

CVE•added 2009/12/31 7:0 p.m.•46 views

CVE-2009-4514

CVE-2009-4514 is an XSS vulnerability in the OpenSocial Shindig-Integrator module for Drupal (versions 5.x and 6.x) before 6.x-2.1. It allows remote authenticated users with "create application" privileges to inject arbitrary script/HTML via unspecified vectors. Exact exploitation details and rem...

3.5CVSS5.4AI score0.00207EPSS

Exploits0References5Affected Software1

Drupal•added 2009/10/28 9:17 p.m.•2 views

SA-CONTRIB-2009-086 - OpenSocial Shindig-Integrator - Cross Site Scripting

The OpenSocial Shindig-Integrator module enables sites to host OpenSocial widgets. The module fails to sanitize user input, making it vulnerable to cross site scripting XSS attacks. This vulnerability is somewhat limited by the fact that an attacker would need an account with the permissions to...

4.7AI score

Exploits0References5

NVD•added 2008/10/17 9:29 p.m.•12 views

CVE-2008-4597

Shindig-Integrator 5.x, a module for Drupal, does not properly restrict generated page access, which allows remote attackers to gain privileges via unspecified vectors...

7.5CVSS6.8AI score0.00519EPSS

NVD•added 2008/10/17 9:29 p.m.•9 views

CVE-2008-4598

Unspecified vulnerability in Shindig-Integrator 5.x, a module for Drupal, has unspecified impact and remote attack vectors related to "numerous flaws" that are not related to XSS or access control, a different vulnerability than CVE-2008-4596 and CVE-2008-4597...

7.5CVSS5.8AI score0.00396EPSS

NVD•added 2008/10/17 9:29 p.m.•11 views

CVE-2008-4596

Cross-site scripting XSS vulnerability in Shindig-Integrator 5.x, a module for Drupal, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors in generated pages...

4.3CVSS5.2AI score0.00322EPSS

Prion•added 2008/10/17 9:29 p.m.•19 views

Design/Logic Flaw

7.5CVSS6.2AI score0.00519EPSS

ATTACKERKB•added 2008/10/17 9:29 p.m.•2 views

CVE-2008-4597

Shindig-Integrator 5.x, a module for Drupal, does not properly restrict generated page access, which allows remote attackers to gain privileges via unspecified vectors...

7.5CVSS5.6AI score0.00519EPSS

ATTACKERKB•added 2008/10/17 9:29 p.m.•2 views

CVE-2008-4598

7.5CVSS5.6AI score0.00519EPSS

ATTACKERKB•added 2008/10/17 9:29 p.m.•2 views

CVE-2008-4596

4.3CVSS5.7AI score0.00322EPSS

Prion•added 2008/10/17 9:29 p.m.•11 views

Cross site scripting

4.3CVSS5.4AI score0.00322EPSS

Prion•added 2008/10/17 9:29 p.m.•14 views

Code injection

Shindig-Integrator 5.x, a module for Drupal, does not properly restrict generated page access, which allows remote attackers to gain privileges via unspecified vectors...

7.5CVSS7.2AI score0.00519EPSS

Cvelist•added 2008/10/17 9:0 p.m.•19 views

CVE-2008-4596

5.2AI score0.00322EPSS

CVE•added 2008/10/17 9:0 p.m.•46 views

CVE-2008-4596

CVE-2008-4596 is a cross-site scripting (XSS) vulnerability in Shindig-Integrator 5.x, a Drupal module. The issue affects generated pages and allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. The provided documents do not specify affected product ve...

4.3CVSS5.3AI score0.00322EPSS