Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
drupal invite module vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5621
Multiple cross-site scripting (XSS) vulnerabilities in the Token module prior to 4.7.x-1.5, and 5.x prior to 5.x-1.9, for Drupal; as used by the ASIN Field, e-Commerce, Fullname field for CCK, Invite, Node Relativity, Pathauto, PayPal Node, and Ubercart modules; allow remote auth...
Drupal Invite Module
Drupal Token Module
Drupal Drupal 5.2
Drupal Paypal Node Module
Drupal Node Relativity Module
Drupal Ubercart Module
Drupal Drupal 5.0
Drupal Pathauto Module
Drupal Drupal 4.7
Drupal E-commerce Module
Drupal Drupal 5.1
Drupal Asin Field Module
Drupal Fullname Field For Cck
NA
CVE-2015-3372
Cross-site scripting (XSS) vulnerability in the Node Invite module prior to 6.x-2.5 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a node title.
Node Invite Project Node Invite
NA
CVE-2015-3371
Open redirect vulnerability in the Node Invite module prior to 6.x-2.5 for Drupal allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via the destination parameter.
Node Invite Project Node Invite
NA
CVE-2015-3370
Cross-site request forgery (CSRF) vulnerability in the Node Invite module prior to 6.x-2.5 for Drupal allows remote malicious users to hijack the authentication of users with the "node_invite_can_manage_invite" permission for requests that re-enable node invitations via...
Node Invite Project Node Invite
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started