4 matches found
EUVD-2021-10359
Malware in sbrugna...
CVE-2021-23260
Authenticated users with Site roles may inject XSS scripts via file names that will execute in the browser for this and other users of the same site...
CVE-2021-23260 Stored XSS Vulnerability in File Name of the File Upload function
Authenticated users with Site roles may inject XSS scripts via file names that will execute in the browser for this and other users of the same site...
Drupal Core Information Disclosure Vulnerability (CNVD-2016-01932)
Drupal is a free and open source content management system developed in PHP. Drupal Core has a security vulnerability. Depending on the data that has been added to the form or saved before the array, allows an attacker can lead to a user to get all the roles on the site...