Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
drupal drupal 5.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-7980
Multiple cross-site scripting (XSS) vulnerabilities in template.php in Zen theme 7.x-3.x prior to 7.x-3.3 and 7.x-5.x prior to 7.x-5.5 for Drupal allow remote authenticated users with the "administer themes" permission to inject arbitrary web script or HTML via the skip...
Drupal Zen 7.x-5.3
Drupal Zen 7.x-5.2
Drupal Zen 7.x-5.1
Drupal Zen 7.x-5.0
Drupal Zen 7.x-3.2
Drupal Zen 7.x-3.0
Drupal Zen 7.x-3.1
Drupal Zen 7.x-5.4
NA
CVE-2012-2922
The request_path function in includes/bootstrap.inc in Drupal 7.14 and previous versions allows remote malicious users to obtain sensitive information via the q[] parameter to index.php, which reveals the installation path in an error message.
Drupal Drupal 7.9
Drupal Drupal 7.8
Drupal Drupal 7.1
Drupal Drupal 7.0
Drupal Drupal 6.6
Drupal Drupal 6.11
Drupal Drupal 6.7
Drupal Drupal 6.0
Drupal Drupal 6.4
Drupal Drupal 6.16
Drupal Drupal 5.15
Drupal Drupal 5.0
Drupal Drupal 5.18
Drupal Drupal 5.9
Drupal Drupal 5.5
Drupal Drupal 5.20
Drupal Drupal 5.10
Drupal Drupal
Drupal Drupal 7.12
Drupal Drupal 7.5
Drupal Drupal 7.4
Drupal Drupal 6.2
NA
CVE-2007-6299
Multiple SQL injection vulnerabilities in Drupal and vbDrupal 4.7.x prior to 4.7.9 and 5.x prior to 5.4 allow remote malicious users to execute arbitrary SQL commands via modules that pass input to the taxonomy_select_nodes function, as demonstrated by the (1) taxonomy_menu, (2) ...
Drupal Drupal 4.4.1
Drupal Drupal 4.4.2
Drupal Drupal 4.5.5
Drupal Drupal 4.5.6
Drupal Drupal 4.6.2
Drupal Drupal 4.6.3
Drupal Drupal 4.7
Drupal Drupal 4.7.1
Drupal Drupal 4.7.8
Drupal Drupal 4.7 Rev1.15
Drupal Drupal 4.2.0 Rc
Drupal Drupal 4.4.0
Drupal Drupal 4.5.3
Drupal Drupal 4.5.4
Drupal Drupal 4.6.1
Drupal Drupal 4.6.10
Drupal Drupal 4.6.11
Drupal Drupal 4.6.8
Drupal Drupal 4.6.9
Drupal Drupal 4.7.6
Drupal Drupal 4.7.7
Drupal Drupal 4.0.0
NA
CVE-2007-6752
Cross-site request forgery (CSRF) vulnerability in Drupal 7.12 and previous versions allows remote malicious users to hijack the authentication of arbitrary users for requests that end a session via the user/logout URI. NOTE: the vendor disputes the significance of this issue, by...
Drupal Drupal 4.6.0
Drupal Drupal 4.6
Drupal Drupal 7.0
Drupal Drupal 5.10
Drupal Drupal 5.4
Drupal Drupal 4.6.5
Drupal Drupal 4.5.4
Drupal Drupal 6.0
Drupal Drupal 4.7.2
Drupal Drupal 4.6.10
Drupal Drupal 6.2
Drupal Drupal 5.17
Drupal Drupal 4.6.9
Drupal Drupal 5.13
Drupal Drupal 6.14
Drupal Drupal 6.24
Drupal Drupal 6.13
Drupal Drupal 4.5.0
Drupal Drupal 5.12
Drupal Drupal 6.18
Drupal Drupal 5.2
Drupal Drupal 7.3
1 EDB exploit
NA
CVE-2015-7229
The Twitter module 6.x-5.x prior to 6.x-5.2, 7.x-5.x prior to 7.x-5.9, and 7.x-6.x prior to 7.x-6.0 for Drupal does not properly check access permissions, which allows remote authenticated users to post tweets to arbitrary accounts by leveraging the (1) "post to twitter"...
Twitter Project Twitter 7.x-5.1
Twitter Project Twitter 7.x-5.2
Twitter Project Twitter 7.x-5.3
Twitter Project Twitter 7.x-5.4
Twitter Project Twitter 7.x-6.0
Twitter Project Twitter 6.x-5.x
Twitter Project Twitter 7.x-5.0
Twitter Project Twitter 7.x-5.5
Twitter Project Twitter 7.x-5.7
Twitter Project Twitter 6.x-5.0
Twitter Project Twitter 6.x-5.1
Twitter Project Twitter 7.x-5.6
Twitter Project Twitter 7.x-5.8
5.4
CVSSv3
CVE-2013-4275
Cross-site scripting (XSS) vulnerability in the zen_breadcrumb function in template.php in the Zen theme 6.x-1.x, 7.x-3.x prior to 7.x-3.2, and 7.x-5.x prior to 7.x-5.4 for Drupal allows remote authenticated users with the "administer themes" permission to inject arbitr...
Zen Project Zen
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3