Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
civicrm civicrm private report 6.x-1.1 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2015-4391
Cross-site request forgery (CSRF) vulnerability in the CiviCRM private report module 6.x-1.x prior to 6.x-1.2 and 7.x-1.x prior to 7.x-1.3 for Drupal allows remote malicious users to hijack the authentication of users for requests that delete reports via unspecified vectors.
Civicrm Civicrm Private Report 7.x-1.2
Civicrm Civicrm Private Report 6.x-1.0
Civicrm Civicrm Private Report 6.x-1.1
Civicrm Civicrm Private Report 7.x-1.0
Civicrm Civicrm Private Report 7.x-1.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started