Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
drupal drupal 6 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4148
SQL injection vulnerability in the Mailhandler module 5.x prior to 5.x-1.4 and 6.x prior to 6.x-1.4, a module for Drupal, allows remote malicious users to execute arbitrary SQL commands via unspecified vectors, related to composing queries without using the Drupal database API.
Drupal Mailhandler
Drupal Mailhandler 6.x-1.2
Drupal Mailhandler 5.x-1.0
Drupal Mailhandler 5.x-1.x-dev
Drupal Mailhandler 5.x-1.2
Drupal Mailhandler 5.x-1.1
Drupal Mailhandler 6.x-1.x-dev
Drupal Mailhandler 6.x-1.1
Drupal Mailhandler 6.x-1.0
NA
CVE-2009-0817
Cross-site scripting (XSS) vulnerability in the Protected Node module 5.x prior to 5.x-1.4 and 6.x prior to 6.x-1.5, a module for Drupal, allows remote authenticated users with "administer site configuration" permissions to inject arbitrary web script or HTML via the Pa...
Drupal Protected Node Module 5.x
Drupal Protected Node Module 5.x-1.0
Drupal Protected Node Module 5.x-1.2
Drupal Protected Node Module 5.x-1.3
Drupal Protected Node Module 5.x-1.x-dev
Drupal Protected Node Module 6.x-1.0
Drupal Protected Node Module 6.x-1.2
Drupal Protected Node Module 6.x-1.3
Drupal Protected Node Module 6.x-1.4
NA
CVE-2014-8765
Multiple cross-site scripting (XSS) vulnerabilities in the Project Issue File Review module (PIFR) module 6.x-2.x prior to 6.x-2.17 for Drupal allow (1) remote malicious users to inject arbitrary web script or HTML via a crafted patch, which triggers a PIFR client to test the pat...
Drupal Project Issue File Review 6.x-2.15
Drupal Project Issue File Review 6.x-2.14
Drupal Project Issue File Review 6.x-2.12
Drupal Project Issue File Review 6.x-2.08
Drupal Project Issue File Review 6.x-2.07
Drupal Project Issue File Review 6.x-2.00
Drupal Project Issue File Review 6.x-2.05
Drupal Project Issue File Review 6.x-2.04
Drupal Project Issue File Review 6.x-2.03
Drupal Project Issue File Review 6.x-2.02
Drupal Project Issue File Review
Drupal Project Issue File Review 6.x-2.10
Drupal Project Issue File Review 6.x-2.13
Drupal Project Issue File Review 6.x-2.06
Drupal Project Issue File Review 6.x-2.01
NA
CVE-2008-2771
The Node Hierarchy module 5.x prior to 5.x-1.1 and 6.x prior to 6.x-1.0 for Drupal does not properly implement access checks, which allows remote attackers with "access content" permissions to bypass restrictions and modify the node hierarchy via unspecified attack vect...
Drupal Drupal 5.0
Drupal Drupal 6.0
Drupal Node Hierarchy Module 5
Drupal Node Hierarchy Module 6
NA
CVE-2009-2079
Cross-site scripting (XSS) vulnerability in the administrative page interface in Taxonomy manager 5.x prior to 5.x-1.2 and 6.x prior to 6.x-1.1, a module for Drupal, allows remote authenticated users, with administer taxonomy privileges or the ability to use free tagging to add t...
Drupal Taxonomy Manager 5.x-1.0
Drupal Taxonomy Manager 5.x-1.1
Drupal Taxonomy Manager 6.x-1.0
Drupal Taxonomy Manager 6.x-1.0-beta1
Drupal Taxonomy Manager 6.x-1.0-beta2
NA
CVE-2012-1642
includes/linkchecker.pages.inc in the Link checker module 6.x-2.x prior to 6.x-2.5 for Drupal does not properly enforce access permissions on broken links, which allows remote malicious users to obtain sensitive information via unspecified vectors.
Yaml-fuer-drupal Linkchecker 6.x-2.4
Yaml-fuer-drupal Linkchecker 6.x-2.3
Yaml-fuer-drupal Linkchecker 6.x-2.2
Yaml-fuer-drupal Linkchecker 6.x-2.1
Yaml-fuer-drupal Linkchecker 6.x-2.0
Yaml-fuer-drupal Linkchecker 6.x-2.x
6.1
CVSSv3
CVE-2011-2714
A Cross-Site Scripting vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table descriptions, field names, or labels before display.
Drupal Data 6.x-1.0
Drupal Drupal 6.20
9.8
CVSSv3
CVE-2011-2715
An SQL Injection vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table names or column names.
Drupal Data 6.x-1.0
Drupal Drupal 6.20
NA
CVE-2014-7870
Cross-site scripting (XSS) vulnerability in the Custom Search module 6.x-1.x prior to 6.x-1.12 and 7.x-1.x prior to 7.x-1.14 for Drupal allows remote authenticated users with the "administer custom search" permission to inject arbitrary web script or HTML via the "...
Drupal Custom Search Module 6.x-1.11
Drupal Custom Search Module 6.x-1.10
Drupal Custom Search Module 6.x-1.9
Drupal Custom Search Module 6.x-1.8
Drupal Custom Search Module 7.x-1.8
Drupal Custom Search Module 7.x-1.7
Drupal Custom Search Module 7.x-1.6
Drupal Custom Search Module 7.x-1.5
Drupal Custom Search Module 6.x-1.7
Drupal Custom Search Module 6.x-1.5
Drupal Custom Search Module 7.x-1.12
Drupal Custom Search Module 7.x-1.10
Drupal Custom Search Module 7.x-1.3
Drupal Custom Search Module 7.x-1.1
Drupal Custom Search Module 6.x-1.3
Drupal Custom Search Module 6.x-1.2
Drupal Custom Search Module 6.x-1.1
Drupal Custom Search Module 6.x-1.0
Drupal Custom Search Module 7.x-1.13
Drupal Custom Search Module 7.x-1.0
Drupal Custom Search Module 6.x-1.6
Drupal Custom Search Module 6.x-1.4
NA
CVE-2014-8745
Cross-site scripting (XSS) vulnerability in the Custom Search module 6.x-1.x prior to 6.x-1.13 and 7.x-1.x prior to 7.x-1.15 for Drupal allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTML via a taxonomy voca...
Drupal Custom Search Module 6.x-1.10
Drupal Custom Search Module 6.x-1.11
Drupal Custom Search Module 6.x-1.12
Drupal Custom Search Module 6.x-1.4
Drupal Custom Search Module 6.x-1.5
Drupal Custom Search Module 7.x-1.10
Drupal Custom Search Module 7.x-1.11
Drupal Custom Search Module 7.x-1.5
Drupal Custom Search Module 7.x-1.6
Drupal Custom Search Module 6.x-1.2
Drupal Custom Search Module 6.x-1.3
Drupal Custom Search Module 7.x-1.0
Drupal Custom Search Module 7.x-1.1
Drupal Custom Search Module 7.x-1.3
Drupal Custom Search Module 7.x-1.4
Drupal Custom Search Module 6.x-1.8
Drupal Custom Search Module 6.x-1.9
Drupal Custom Search Module 7.x-1.14
Drupal Custom Search Module 7.x-1.2
Drupal Custom Search Module 6.x-1.0
Drupal Custom Search Module 6.x-1.1
Drupal Custom Search Module 6.x-1.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »