Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
drupal invite module vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5621
Multiple cross-site scripting (XSS) vulnerabilities in the Token module prior to 4.7.x-1.5, and 5.x prior to 5.x-1.9, for Drupal; as used by the ASIN Field, e-Commerce, Fullname field for CCK, Invite, Node Relativity, Pathauto, PayPal Node, and Ubercart modules; allow remote auth...
Drupal Drupal 5.2
Drupal E-commerce Module
Drupal Token Module
Drupal Asin Field Module
Drupal Drupal 4.7
Drupal Node Relativity Module
Drupal Pathauto Module
Drupal Drupal 5.0
Drupal Drupal 5.1
Drupal Paypal Node Module
Drupal Ubercart Module
Drupal Fullname Field For Cck
Drupal Invite Module
NA
CVE-2015-3372
Cross-site scripting (XSS) vulnerability in the Node Invite module prior to 6.x-2.5 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a node title.
Node Invite Project Node Invite
NA
CVE-2015-3371
Open redirect vulnerability in the Node Invite module prior to 6.x-2.5 for Drupal allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via the destination parameter.
Node Invite Project Node Invite
NA
CVE-2015-3370
Cross-site request forgery (CSRF) vulnerability in the Node Invite module prior to 6.x-2.5 for Drupal allows remote malicious users to hijack the authentication of users with the "node_invite_can_manage_invite" permission for requests that re-enable node invitations via...
Node Invite Project Node Invite
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started