12 matches found
EUVD-2007-6266
Malware in sbrugna...
EUVD-2007-0838
Malware in sbrugna...
VBDrupal Cross Site Scripting
Exploit Title: VBDrupal Cross Site Scripting Date: 6.01.2012 Author: Sony Software Link: http://drupal.org/download Web Browser : Mozilla Firefox Blog : http://st2tea.blogspot.com PoC: http://st2tea.blogspot.com/2012/01/vbdrupal-cross-site-scripting.html...
CVE-2007-6299
Multiple SQL injection vulnerabilities in Drupal and vbDrupal 4.7.x before 4.7.9 and 5.x before 5.4 allow remote attackers to execute arbitrary SQL commands via modules that pass input to the taxonomyselectnodes function, as demonstrated by the 1 taxonomymenu, 2 ajaxLoader, and 3 ubrowser...
CVE-2007-6299
Multiple SQL injection vulnerabilities in Drupal and vbDrupal 4.7.x before 4.7.9 and 5.x before 5.4 allow remote attackers to execute arbitrary SQL commands via modules that pass input to the taxonomyselectnodes function, as demonstrated by the 1 taxonomymenu, 2 ajaxLoader, and 3 ubrowser...
Sql injection
Multiple SQL injection vulnerabilities in Drupal and vbDrupal 4.7.x before 4.7.9 and 5.x before 5.4 allow remote attackers to execute arbitrary SQL commands via modules that pass input to the taxonomyselectnodes function, as demonstrated by the 1 taxonomymenu, 2 ajaxLoader, and 3 ubrowser...
CVE-2007-6299
Multiple SQL injection vulnerabilities in Drupal and vbDrupal 4.7.x before 4.7.9 and 5.x before 5.4 allow remote attackers to execute arbitrary SQL commands via modules that pass input to the taxonomyselectnodes function, as demonstrated by the 1 taxonomymenu, 2 ajaxLoader, and 3 ubrowser...
CVE-2007-6299
CVE-2007-6299 affects Drupal 4.7.x before 4.7.9 and 5.x before 5.4. The vulnerability arises from the taxonomy_select_nodes function where input is directly injected into SQL queries, enabling SQL injection via contributed modules (e.g., taxonomy_menu, ajaxLoader, ubrowser). This allows remote at...
CVE-2007-0841
Multiple unspecified vulnerabilities in vbDrupal before 4.7.6.0 have unknown impact and remote attack vectors. NOTE: the vector related to Drupal is covered by CVE-2007-0626. These vulnerabilities might be associated with other CVE identifiers...
Design/Logic Flaw
Multiple unspecified vulnerabilities in vbDrupal before 4.7.6.0 have unknown impact and remote attack vectors. NOTE: the vector related to Drupal is covered by CVE-2007-0626. These vulnerabilities might be associated with other CVE identifiers...
CVE-2007-0841
Multiple unspecified vulnerabilities in vbDrupal before 4.7.6.0 have unknown impact and remote attack vectors. NOTE: the vector related to Drupal is covered by CVE-2007-0626. These vulnerabilities might be associated with other CVE identifiers...
CVE-2007-0841
CVE-2007-0841 covers VBDrupal before 4.7.6.0 with multiple unspecified vulnerabilities; the Drupal-related vector is addressed by CVE-2007-0626. The linked CVE-0626 specifies a remote code execution path via previewing comments in Drupal (and vbDrupal) before 4.7.6.0 (Drupal 4.7.6 and 5.x before ...