Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
DrupalData

2 matches found

CVE
CVEadded 2020/01/14 9:22 p.m.87 views

CVE-2011-2715

Drupal 6.20 with Data 6.x-1.0-alpha14 is affected by an SQL Injection vulnerability caused by insufficient sanitization of table names or column names. The flaw can compromise data confidentiality and integrity (per CVE description). The connected records corroborate this issue across multiple so...

9.8CVSS9.7AI score0.01065EPSS
CVE
CVEadded 2020/01/14 9:17 p.m.79 views

CVE-2011-2714

Drupal 6.20 with Data 6.x-1.0-alpha14 is affected by a cross-site scripting vulnerability due to insufficient sanitization of table descriptions, field names, or labels before display. The CVE-2011-2714 entry notes this issue, but the connected sources do not provide exploit details, active explo...

6.1CVSS6AI score0.01202EPSS