CVE-2009-1047

CVE-2009-1047 is a Drupal XSS vulnerability in the Send by e-mail module of the Printer, e-mail and PDF versions module. The issue affects Drupal 5.x before 5.x-4.4 and 6.x before 6.x-1.4, enabling remote attackers to inject arbitrary web script or HTML via outbound HTML e-mail. Impact is web ses...

CVE-2009-1037

CVE-2009-1037 affects Drupal’s Send by e-mail module within the "Printer, e-mail and PDF versions" module. The vulnerability concerns the flood control API and allows remote attackers to cause unlimited spam messages via vectors related to flood control behavior. Affected versions are 5.x before ...

CVE-2009-1343

CVE-2009-1343 describes a cross-site scripting (XSS) vulnerability in the Drupal Print module (also known as Printer, e-mail and PDF versions). The flaw affects 5.x releases before 5.x-4.5 and 6.x releases before 6.x-1.5, where an attacker can inject arbitrary script or HTML via content titles. T...

CVE-2009-1823

CVE-2009-1823 is a Drupal Print module XSS affecting 5.x before 5.x-4.7 and 6.x before 6.x-1.7. It allows remote attackers to inject arbitrary script or HTML by modifying the document head with crafted UTF-8 bytes that IE6/IE7 treat as UTF-7. Related to CVE-2009-1575; other related Drupal XSS ent...

CVE-2014-8078

The CVE-2014-8078 entry maps to a Drupal vulnerability in the Print (Printer, e‑mail and PDF versions) contributed module. Affected versions are 6.x-1.x before 6.x-1.19, 7.x-1.x before 7.x-1.3, and 7.x-2.x before 7.x-2.0. The root cause is insufficient sanitization of user input during the genera...