Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
drupal bibliography module vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2006-4108
SQL injection vulnerability in Bibliography (biblio.module) 4.6 before revision 1.1.1.1.4.11 and 4.7 before revision 1.13.2.5 for Drupal allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Drupal Bibliography Module
383
VMScore
CVE-2006-4109
Cross-site scripting (XSS) vulnerability in Bibliography (biblio.module) 4.6 before revision 1.1.1.1.4.11 and 4.7 before revision 1.13.2.5 for Drupal allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Drupal Bibliography Module
383
VMScore
CVE-2009-3479
Cross-site scripting (XSS) vulnerability in Bibliography (Biblio) 5.x prior to 5.x-1.17 and 6.x prior to 6.x-1.6, a module for Drupal, allows remote attackers, with "create content displayed by the Bibliography module" permissions, to inject arbitrary web script or HTML...
Drupal Drupal
Ron Jerome Bibliography 5.x-1.3
Ron Jerome Bibliography 5.x-1.4
Ron Jerome Bibliography 5.x-1.5
Ron Jerome Bibliography 5.x-1.6
Ron Jerome Bibliography 6.x-1.x-dev
Ron Jerome Bibliography 6.x-1.0-beta2
Ron Jerome Bibliography 6.x-1.0-beta3
Ron Jerome Bibliography 6.x-1.0-beta4
Ron Jerome Bibliography 6.x-1.0-beta5
Ron Jerome Bibliography 6.x-1.0
Ron Jerome Bibliography 5.x-1.11
Ron Jerome Bibliography 5.x-1.12
Ron Jerome Bibliography 5.x-1.13
Ron Jerome Bibliography 5.x-1.14
Ron Jerome Bibliography 6.x-1.1
Ron Jerome Bibliography 6.x-1.2
Ron Jerome Bibliography 6.x-1.3
Ron Jerome Bibliography 5.x-1.1
Ron Jerome Bibliography 5.x-1.8
Ron Jerome Bibliography 5.x-1.10
Ron Jerome Bibliography 5.x-1.15
187
VMScore
CVE-2010-1358
Cross-site scripting (XSS) vulnerability in the Bibliography (Biblio) module 5.x up to and including 5.x-1.17 and 6.x up to and including 6.x-1.9 for Drupal allows remote authenticated users, with "administer biblio" privileges, to inject arbitrary web script or HTML vi...
Ron Jerome Bibliography 5.x-1.1
Ron Jerome Bibliography 5.x-1.3
Ron Jerome Bibliography 6.x-1.0-beta1
Ron Jerome Bibliography 6.x-1.0-beta3
Ron Jerome Bibliography 6.x-1.0-beta8
Ron Jerome Bibliography 6.x-1.0
Ron Jerome Bibliography 6.x-1.3
Ron Jerome Bibliography 6.x-1.5
Ron Jerome Bibliography 6.x-1.0-beta4
Ron Jerome Bibliography 6.x-1.0-beta5
Ron Jerome Bibliography 6.x-1.0-beta6
Ron Jerome Bibliography 6.x-1.0-beta7
Ron Jerome Bibliography 6.x-1.x-dev
Ron Jerome Bibliography 5.x-1.4
Ron Jerome Bibliography 5.x-1.5
Ron Jerome Bibliography 5.x-1.6
Ron Jerome Bibliography 5.x-1.7
Ron Jerome Bibliography 6.x-1.1
Ron Jerome Bibliography 5.x-1.0
Ron Jerome Bibliography 5.x-1.2
Ron Jerome Bibliography 5.x-1.x-dev
Ron Jerome Bibliography 6.x-1.0-beta2
187
VMScore
CVE-2010-2000
Cross-site scripting (XSS) vulnerability in the Bibliography (Biblio) module 5.x up to and including 5.x-1.17 and 6.x up to and including 6.x-1.9 for Drupal allows remote authenticated users, with "administer biblio" privileges, to inject arbitrary web script or HTML vi...
Ron Jerome Bibliography 5.x-1.17
Ron Jerome Bibliography 5.x-1.16
Ron Jerome Bibliography 5.x-1.14
Ron Jerome Bibliography 5.x-1.12
Ron Jerome Bibliography 5.x-1.11
Ron Jerome Bibliography 5.x-1.10
Ron Jerome Bibliography 5.x-1.1
Ron Jerome Bibliography 5.x-1.15
Ron Jerome Bibliography 5.x-1.13
Ron Jerome Bibliography 5.x-1.0
Ron Jerome Bibliography 6.x-1.0
Ron Jerome Bibliography 6.x-1.0-beta5
Ron Jerome Bibliography 6.x-1.0-beta4
Ron Jerome Bibliography 6.x-1.0-beta3
Ron Jerome Bibliography 6.x-1.0-beta2
Ron Jerome Bibliography 6.x-1.1
Ron Jerome Bibliography 6.x-1.0-beta9
Ron Jerome Bibliography 6.x-1.0-beta7
Ron Jerome Bibliography 6.x-1.3
Ron Jerome Bibliography 6.x-1.4
Ron Jerome Bibliography 6.x-1.5
Ron Jerome Bibliography 6.x-1.6
187
VMScore
CVE-2009-3488
Cross-site scripting (XSS) vulnerability in the Bibliography (aka Biblio) module 6.x-1.6 for Drupal allows remote authenticated users, with certain content-creation privileges, to inject arbitrary web script or HTML via the Title field, probably a different vulnerability than CVE...
Ron Jerome Bibliography 6.x-1.6
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started