Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-3413

Malware in sbrugna...

3.5CVSS6.4AI score0.00965EPSS
Exploits0References6
NVD
NVD
added 2015/04/21 4:59 p.m.13 views

CVE-2015-3369

Cross-site scripting XSS vulnerability in the Taxonews module before 6.x-1.2 and 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTML via a term name in a block...

3.5CVSS5.3AI score0.00965EPSS
Exploits0References5
Cvelist
Cvelist
added 2015/04/21 4:0 p.m.24 views

CVE-2015-3369

Cross-site scripting XSS vulnerability in the Taxonews module before 6.x-1.2 and 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTML via a term name in a block...

5.3AI score0.00965EPSS
Exploits0References5
Cvelist
Cvelist
added 2015/04/21 4:0 p.m.20 views

CVE-2015-3368

Cross-site scripting XSS vulnerability in the administration user interface in the Classified Ads module before 6.x-3.1 and 7.x-3.x before 7.x-3.1 for Drupal allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTML via a category name...

5.3AI score0.00965EPSS
Exploits0References5
NVD
NVD
added 2014/07/22 2:55 p.m.23 views

CVE-2014-5021

Cross-site scripting XSS vulnerability in the Form API in Drupal 6.x before 6.32 and possibly 7.x before 7.29 allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTML via an option group label...

2.1CVSS5.2AI score0.01127EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2014/07/22 2:55 p.m.29 views

CVE-2014-5021

Cross-site scripting XSS vulnerability in the Form API in Drupal 6.x before 6.32 and possibly 7.x before 7.29 allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTML via an option group label...

2.1CVSS6.5AI score0.01127EPSS
Exploits0References3
Cvelist
Cvelist
added 2014/07/22 2:0 p.m.42 views

CVE-2014-5021

Cross-site scripting XSS vulnerability in the Form API in Drupal 6.x before 6.32 and possibly 7.x before 7.29 allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTML via an option group label...

5.8AI score0.01127EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2014/07/22 2:0 p.m.41 views

CVE-2014-5021

Removed by vendor...

2.1CVSS6.2AI score0.01127EPSS
Exploits0
Prion
Prion
added 2014/05/13 3:55 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Feed Element Mapper module for Drupal allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTML via vectors related to options...

2.1CVSS5.6AI score0.00729EPSS
Exploits0References2
Cvelist
Cvelist
added 2014/05/13 3:0 p.m.22 views

CVE-2013-4503

Cross-site scripting XSS vulnerability in the Feed Element Mapper module for Drupal allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTML via vectors related to options...

5.2AI score0.00729EPSS
Exploits0References2
CVE
CVE
added 2014/05/13 3:0 p.m.45 views

CVE-2013-4503

CVE-2013-4503 concerns the Drupal "Feed Element Mapper" module. The security advisory and related records specify that the module allows an attacker with the explicit permission "administer taxonomy" (remote authenticated user) to trigger a cross-site scripting (XSS) condition by injecting arbitr...

2.1CVSS5.3AI score0.00729EPSS
Exploits0References2Affected Software1
Packet Storm
Packet Storm
added 2009/05/10 12:0 a.m.26 views

Drupal 5.17 Cross Site Scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Drupal 5.17 Taxonomy Core Module Contains XSS Vulnerability May 7, 2009 Version tested: Drupal 5.17 http://lampsecurity.org/drupal-taxonomy-vulnerability Drupal http://drupal.org is a robust content management system CMS written in PHP and supported b...

7.4AI score
Exploits0
NVD
NVD
added 2009/03/05 2:30 a.m.13 views

CVE-2009-0818

Cross-site scripting XSS vulnerability in the taxonomythemeadmintablebuilder function taxonomythemeadmin.inc in Taxonomy Theme module before 5.x-1.2, a module for Drupal, allows remote authenticated users with the "administer taxonomy" permission, or the ability to create pages when tagging is...

3.5CVSS5.3AI score0.0147EPSS
Exploits0References6
Rows per page
Query Builder