Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2008-6245

Malware in sbrugna...

4.3CVSS6.4AI score0.00357EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2008-6246

Malware in sbrugna...

6.5CVSS6.4AI score0.0039EPSS
Exploits0References6
Prion
Prionadded 2009/02/25 11:30 p.m.18 views

Sql injection

Multiple SQL injection vulnerabilities in the User Karma module 5.x before 5.x-1.13 and 6.x before 6.x-1.0-beta1, a module for Drupal, allow remote authenticated administrators to execute arbitrary SQL commands via 1 a content type or 2 a voting API value...

6.5CVSS8.9AI score0.0039EPSS
Exploits0References5Affected Software1
NVD
NVDadded 2009/02/25 11:30 p.m.11 views

CVE-2008-6275

Cross-site scripting XSS vulnerability in the User Karma module 5.x before 5.x-1.13 and 6.x before 6.x-1.0-beta1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified messages...

4.3CVSS5.8AI score0.00357EPSS
Exploits0References5
Prion
Prionadded 2009/02/25 11:30 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in the User Karma module 5.x before 5.x-1.13 and 6.x before 6.x-1.0-beta1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified messages...

4.3CVSS6.2AI score0.00357EPSS
Exploits0References5Affected Software1
CVE
CVEadded 2009/02/25 11:0 p.m.50 views

CVE-2008-6276

CVE-2008-6276 describes SQL injection vulnerabilities in the Drupal module User Karma. Affected versions are 5.x before 5.x-1.13 and 6.x before 6.x-1.0-beta1. The flaws allow remote authenticated administrators to execute arbitrary SQL commands via either a content type or a voting API value. The...

6.5CVSS8.4AI score0.0039EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2009/02/25 11:0 p.m.14 views

CVE-2008-6275

Cross-site scripting XSS vulnerability in the User Karma module 5.x before 5.x-1.13 and 6.x before 6.x-1.0-beta1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified messages...

5.8AI score0.00357EPSS
Exploits0References5
Cvelist
Cvelistadded 2009/02/25 11:0 p.m.20 views

CVE-2008-6276

Multiple SQL injection vulnerabilities in the User Karma module 5.x before 5.x-1.13 and 6.x before 6.x-1.0-beta1, a module for Drupal, allow remote authenticated administrators to execute arbitrary SQL commands via 1 a content type or 2 a voting API value...

8.1AI score0.0039EPSS
Exploits0References5
CVE
CVEadded 2009/02/25 11:0 p.m.47 views

CVE-2008-6275

The CVE-2008-6275 entry describes a cross-site scripting (XSS) vulnerability in the Drupal User Karma module (versions 5.x prior to 5.x-1.13 and 6.x prior to 6.x-1.0-beta1). The flaw allows remote attackers to inject arbitrary web script or HTML via unspecified messages. The available documents c...

4.3CVSS5.9AI score0.00357EPSS
Exploits0References5Affected Software1
seebug.org
seebug.orgadded 2008/11/30 12:0 a.m.22 views

Drupal User Karma模块跨站脚本和SQL注入漏洞

BUGTRAQ ID: 32491 Drupal的User Karma模块用于显示和管理用户的karma点数。 User Karma模块没有正确地过滤内容类型和投票API值便用在了SQL查询中,这可能导致SQL注入攻击;此外攻击者还可以通过向该模块提交恶意请求执行跨站脚本攻击,导致在用户浏览器会话中执行任意HTML和脚本代码。 Drupal User Karma 6.x Drupal User Karma 5.x 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

6.9AI score
Exploits0
Rows per page
Query Builder