4 matches found
CVE-2008-6135
CVE-2008-6135 is an XSS vulnerability in the EveryBlog module (Drupal) for versions 5.x and 6.x. The affected component is the EveryBlog module; the root cause is an input handling/output sanitization flaw that permits remote attackers to inject arbitrary web script or HTML. The provided document...
CVE-2008-6137
CVE-2008-6137 affects Drupal via the EveryBlog module (versions 5.x and 6.x). The vulnerability allows remote attackers to bypass access restrictions. The connected documents confirm the affected component but do not provide explicit root cause analysis, exploit details, affected configurations, ...
CVE-2008-6134
CVE-2008-6134 describes an SQL injection vulnerability in the EveryBlog Drupal module (versions 5.x and 6.x). The flaw allows remote attackers to execute arbitrary SQL commands via unspecified vectors, with a CVSS v2 base score of 7.5 (HIGH) and network attack vector, low attack complexity, no au...
CVE-2008-6136
Technical details about CVE-2008-6136 are not publicly provided in the supplied documents. Monitor for updates from official advisories; current sources describe an unspecified Drupal module vulnerability without concrete affected versions, vectors, or fixes.