EUVD-2012-2295

Malware in sbrugna...

CVE-2012-2302

Site Documentation Sitedoc module for Drupal 6.x-1.x before 6.x-1.4 does not properly check the save location when archiving, which allows remote attackers to obtain sensitive information via unspecified vectors...

CVE-2015-4370

CVE-2015-4370 is a XSS in the Drupal Site Documentation module (6.x-1.x) prior to 6.x-1.5. Root cause: insufficient sanitization of user-supplied text on certain pages, exploitable by remote authenticated users with permission to create/edit taxonomy terms. Impact: arbitrary script/HTML injection...

CVE-2012-2302

Site Documentation Sitedoc module for Drupal 6.x-1.x before 6.x-1.4 does not properly check the save location when archiving, which allows remote attackers to obtain sensitive information via unspecified vectors...

Site Documentation Module for Drupal Database Tables Access Content Permission Information Disclosure

The version of the Site Documentation third-party module for Drupal installed on the remote host allows any user with 'access content' permission to retrieve the contents of arbitrary tables in the application's database. An attacker can exploit this issue to retrieve sensitive information, such ...