Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

drupal comment upload module 5.0 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2008-0569
The Comment Upload 4.7.x prior to 4.7.x-0.1 and 5.x prior to 5.x-0.1 module for Drupal does not properly use functions in the upload module, which allows remote malicious users to bypass upload validation, and upload arbitrary files and possibly execute arbitrary code, via unspec...
Drupal Comment Upload Module 4.7Drupal Comment Upload Module 5.0
NA
CVE-2010-3093
The comment module in Drupal 5.x prior to 5.23 and 6.x prior to 6.18 allows remote authenticated users with certain privileges to bypass intended access restrictions and reinstate removed comments via a crafted URL, related to an "unpublishing bypass" issue.
Drupal Drupal 5.4Drupal Drupal 5.5Drupal Drupal 5.6Drupal Drupal 5.7Drupal Drupal 5.20Drupal Drupal 5.21Drupal Drupal 5.22Drupal Drupal 5.0Drupal Drupal 5.12Drupal Drupal 5.13Drupal Drupal 5.14Drupal Drupal 5.15Drupal Drupal 5.1Drupal Drupal 5.3Drupal Drupal 5.8Drupal Drupal 5.10Drupal Drupal 5.17Drupal Drupal 5.19Drupal Drupal 5.2Drupal Drupal 5.9Drupal Drupal 5.11Drupal Drupal 5.16
NA
CVE-2010-3092
The upload module in Drupal 5.x prior to 5.23 and 6.x prior to 6.18 does not properly support case-insensitive filename handling in a database configuration, which allows remote authenticated users to bypass the intended restrictions on downloading a file by uploading a different...
Drupal Drupal 5.0Drupal Drupal 5.10Drupal Drupal 5.11Drupal Drupal 5.12Drupal Drupal 5.13Drupal Drupal 5.14Drupal Drupal 5.2Drupal Drupal 5.3Drupal Drupal 5.4Drupal Drupal 5.5Drupal Drupal 5.19Drupal Drupal 5.20Drupal Drupal 5.21Drupal Drupal 5.22Drupal Drupal 5.1Drupal Drupal 5.6Drupal Drupal 5.8Drupal Drupal 5.15Drupal Drupal 5.17Drupal Drupal 5.7Drupal Drupal 5.9Drupal Drupal 5.16
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTICVE-2024-35863CVE-2024-35910man-in-the-middleCVE-2024-35912CVE-2024-25742LFICVE-2024-32002CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook