Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

x vulnerabilities and exploits

(subscribe to this query)
5.8
CVSSv2
CVE-2013-2123
The Node access user reference module 6.x-3.x prior to 6.x-3.5 and 7.x-3.x prior to 7.x-3.10 for Drupal does not properly restrict access to content containing a user reference field when the author update/delete grants are enabled and the author's user account is deleted, w...
Node Access User Reference Project Nodeaccess Userreference Module 6.x-3.3Node Access User Reference Project Nodeaccess Userreference Module 6.x-3.4Node Access User Reference Project Nodeaccess Userreference Module 7.x-3.xNode Access User Reference Project Nodeaccess Userreference Module 7.x-3.0Node Access User Reference Project Nodeaccess Userreference Module 7.x-3.8Node Access User Reference Project Nodeaccess Userreference Module 7.x-3.9Node Access User Reference Project Nodeaccess Userreference Module 6.x-3.0Node Access User Reference Project Nodeaccess Userreference Module 7.x-3.1Node Access User Reference Project Nodeaccess Userreference Module 7.x-3.2Node Access User Reference Project Nodeaccess Userreference Module 7.x-3.3Node Access User Reference Project Nodeaccess Userreference Module 6.x-3.xNode Access User Reference Project Nodeaccess Userreference Module 6.x-3.2Node Access User Reference Project Nodeaccess Userreference Module 7.x-3.5Node Access User Reference Project Nodeaccess Userreference Module 7.x-3.7Node Access User Reference Project Nodeaccess Userreference Module 6.x-3.1Node Access User Reference Project Nodeaccess Userreference Module 7.x-3.4Node Access User Reference Project Nodeaccess Userreference Module 7.x-3.6
2.1
CVSSv2
CVE-2012-4492
Multiple cross-site scripting (XSS) vulnerabilities in the Shorten URLs module 6.x-1.x prior to 6.x-1.13 and 7.x-1.x prior to 7.x-1.2 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors to the (1) rep...
Isaac Sukin Shorten 6.x-1.xIsaac Sukin Shorten 6.x-1.2Isaac Sukin Shorten 6.x-1.10Isaac Sukin Shorten 6.x-1.11Isaac Sukin Shorten 6.x-1.5Isaac Sukin Shorten 6.x-1.6Isaac Sukin Shorten 6.x-1.7Isaac Sukin Shorten 7.x-1.0Isaac Sukin Shorten 6.x-1.0Isaac Sukin Shorten 6.x-1.1Isaac Sukin Shorten 6.x-1.8Isaac Sukin Shorten 6.x-1.9Isaac Sukin Shorten 7.x-1.xIsaac Sukin Shorten 6.x-1.3Isaac Sukin Shorten 6.x-1.4Isaac Sukin Shorten 6.x-1.12Isaac Sukin Shorten 7.x-1.1
4.3
CVSSv2
CVE-2009-4207
Cross-site scripting (XSS) vulnerability in the Webform module 5.x prior to 5.x-2.7 and 6.x prior to 6.x-2.7, a module for Drupal, allows remote malicious users to inject arbitrary web script or HTML via a submission.
Nathan Haug Webform 5.x-1.xNathan Haug Webform 5.x-1.2Nathan Haug Webform 5.x-1.3Nathan Haug Webform 5.x-2.1.2Nathan Haug Webform 5.x-2.1.3Nathan Haug Webform 5.x-2.1Nathan Haug Webform 5.x-2.2Nathan Haug Webform 6.x-2.1-1Nathan Haug Webform 5.x-1.4Nathan Haug Webform 5.x-1.6Nathan Haug Webform 5.x-1.10Nathan Haug Webform 5.x-2.1-1Nathan Haug Webform 5.x-2.3Nathan Haug Webform 5.x-2.5Nathan Haug Webform 6.x-2.0Nathan Haug Webform 6.x-2.4Nathan Haug Webform 5.x-2.0Nathan Haug Webform 5.x-1.8Nathan Haug Webform 5.x-2.xNathan Haug Webform 5.x-1.9Nathan Haug Webform 6.x-2.6Nathan Haug Webform 6.x-2.x
4.3
CVSSv2
CVE-2009-1047
Cross-site scripting (XSS) vulnerability in the Send by e-mail module in the "Printer, e-mail and PDF versions" module 5.x prior to 5.x-4.4 and 6.x prior to 6.x-1.4, a module for Drupal, allows remote malicious users to inject arbitrary web script or HTML via vectors in...
Drupal DrupalDrupal Print 5.x-4.xDrupal Print 5.x-4.0Drupal Print 5.x-3.0Drupal Print 6.x-1.x-devDrupal Print 5.x-1.1Drupal Print 6.x-1.4Drupal Print 6.x-1.0-rc4Drupal Print 6.x-1.0-rc5Drupal Print 5.xDrupal Print 5.x-4.3Drupal Print 5.x-3.5Drupal Print 5.x-3.4Drupal Print 5.x-2.x-devDrupal Print 5.x-1.2Drupal Print 6.x-1.1Drupal Print 6.x-1.0Drupal Print 5.x-4.2Drupal Print 5.x-4.1Drupal Print 5.x-3.2Drupal Print 5.x-3.3Drupal Print 5.x-3.1
6
CVSSv2
CVE-2012-1625
Eval injection vulnerability in the fillpdf_form_export_decode function in fillpdf.admin.inc in the Fill PDF module 6.x-1.x prior to 6.x-1.16 and 7.x-1.x prior to 7.x-1.2 for Drupal allows remote authenticated users with administer PDFs privileges to execute arbitrary PHP code vi...
Wizonesolutions Fillpdf 6.x-1.15Wizonesolutions Fillpdf 6.x-1.14Wizonesolutions Fillpdf 6.x-1.1Wizonesolutions Fillpdf 6.x-1.0Wizonesolutions Fillpdf 6.x-1.xWizonesolutions Fillpdf 7.x-1.Wizonesolutions Fillpdf 6.x-1.9Wizonesolutions Fillpdf 6.x-1.8Wizonesolutions Fillpdf 6.x-1.7Wizonesolutions Fillpdf 6.x-1.6Wizonesolutions Fillpdf 6.x-1.12Wizonesolutions Fillpdf 6.x-1.10Wizonesolutions Fillpdf 6.x-1.5Wizonesolutions Fillpdf 6.x-1.3Wizonesolutions Fillpdf 7.x-1.0Wizonesolutions Fillpdf 6.x-1.13Wizonesolutions Fillpdf 6.x-1.11Wizonesolutions Fillpdf 6.x-1.4Wizonesolutions Fillpdf 6.x-1.2Wizonesolutions Fillpdf 7.x-1.1Wizonesolutions Fillpdf 7.x-1.x
4.3
CVSSv2
CVE-2013-2179
X.Org xdm 1.1.10, 1.1.11, and possibly other versions, when performing authentication using certain implementations of the crypt API function that can return NULL, allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) by attempting to log...
X X Display Manager 1.1.11X X Display Manager 1.1.10
3.5
CVSSv2
CVE-2009-3210
Multiple cross-site scripting (XSS) vulnerabilities in the Print (aka Printer, e-mail and PDF versions) module 5.x prior to 5.x-4.8 and 6.x prior to 6.x-1.8, a module for Drupal, allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Joao Ventura Print 5.x-3.1Joao Ventura Print 5.x-3.2Joao Ventura Print 5.x-4.x-devJoao Ventura Print 5.x-4.1Joao Ventura Print 6.x-1.x-devJoao Ventura Print 6.x-1.0Joao Ventura Print 6.x-1.7Joao Ventura Print 5.x-3.3Joao Ventura Print 5.x-3.4Joao Ventura Print 5.x-4.2Joao Ventura Print 5.x-4.3Joao Ventura Print 6.x-1.1Joao Ventura Print 6.x-1.2Joao Ventura Print 5.x-3.x-devJoao Ventura Print 5.x-3.0Joao Ventura Print 5.x-3.7Joao Ventura Print 5.x-4.0Joao Ventura Print 5.x-4.7Joao Ventura Print 5.x-2.2Joao Ventura Print 6.x-1.5Joao Ventura Print 6.x-1.6Joao Ventura Print 5.x-3.5
4.3
CVSSv2
CVE-2012-6645
Cross-site scripting (XSS) vulnerability in the autocomplete functionality in the Finder module 6.x-1.x prior to 6.x-1.26, 7.x-1.x, and 7.x-2.x prior to 7.x-2.0-alpha8 for Drupal allows remote malicious users to inject arbitrary web script or HTML via the title of a node, a diffe...
Danielb Finder 7.x-2.0Danielb Finder 7.x-1.3Danielb Finder 7.x-1.4Danielb Finder 6.x-1.0Danielb Finder 6.x-1.1Danielb Finder 6.x-1.10Danielb Finder 6.x-1.18Danielb Finder 6.x-1.19Danielb Finder 6.x-1.4Danielb Finder 6.x-1.5Danielb Finder 7.x-1.5Danielb Finder 7.x-1.6Danielb Finder 6.x-1.11Danielb Finder 6.x-1.12Danielb Finder 6.x-1.13Danielb Finder 6.x-1.24Danielb Finder 6.x-1.23Danielb Finder 6.x-1.9Danielb Finder 6.x-1.8Danielb Finder 7.x-2.xDanielb Finder 7.x-1.0Danielb Finder 7.x-1.x
4.3
CVSSv2
CVE-2012-1561
Cross-site scripting (XSS) vulnerability in the Finder module 6.x-1.x prior to 6.x-1.26, 7.x-1.x, and 7.x-2.x prior to 7.x-2.0-alpha8 for Drupal allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to the "checkbox and radio bu...
Danielb Finder 7.x-2.0Danielb Finder 7.x-1.1Danielb Finder 7.x-1.2Danielb Finder 6.x-1.0Danielb Finder 6.x-1.1Danielb Finder 6.x-1.16Danielb Finder 6.x-1.17Danielb Finder 6.x-1.2Danielb Finder 6.x-1.3Danielb Finder 7.x-1.3Danielb Finder 7.x-1.4Danielb Finder 6.x-1.10Danielb Finder 6.x-1.11Danielb Finder 6.x-1.18Danielb Finder 6.x-1.19Danielb Finder 6.x-1.4Danielb Finder 6.x-1.5Danielb Finder 7.x-1.5Danielb Finder 7.x-1.6Danielb Finder 7.x-1.xDanielb Finder 6.x-1.12Danielb Finder 6.x-1.13
4.3
CVSSv2
CVE-2009-3916
Cross-site scripting (XSS) vulnerability in the Node Hierarchy module 5.x prior to 5.x-1.3 and 6.x prior to 6.x-1.3, a module for Drupal, allows remote malicious users to inject arbitrary web script or HTML via a child node title.
Ronan Dowling Nodehierarchy 5.x-1.2Ronan Dowling Nodehierarchy 5.x-1.1Ronan Dowling Nodehierarchy 6.x-1.x-devRonan Dowling Nodehierarchy 6.x-1.2Ronan Dowling Nodehierarchy 5.x-1.x-devRonan Dowling Nodehierarchy 5.x-1.0Ronan Dowling Nodehierarchy 6.x-2.x-devRonan Dowling Nodehierarchy 6.x-1.1Ronan Dowling Nodehierarchy 6.x-1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581reflected XSSCVE-2024-26925CVE-2024-27956LFICVE-2024-3607CVE-2024-3107CVE-2024-3295SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook