|
270921
|
- |
|
todo_filter_project
|
todo_filter
|
Cross-site request forgery (CSRF) vulnerability in the Todo Filter module before 6.x-1.1 and 7.x-1.x before 7.x-1.1 for Drupal allows remote attackers to hijack the authentication of arbitrary users …
|
CWE-352
Origin Validation Error
|
CVE-2015-3350
|
2024-11-21 11:29 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270922
|
- |
|
htaccess_project
|
htaccess
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Htaccess module before 7.x-2.3 for Drupal allow remote attackers to hijack the authentication of administrators for requests that (1)…
|
CWE-352
Origin Validation Error
|
CVE-2015-3349
|
2024-11-21 11:29 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270923
|
- |
|
cloudwords
|
cloudwords_for_multilingual
|
Cross-site scripting (XSS) vulnerability in the Cloudwords for Multilingual Drupal module before 7.x-2.3 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a node…
|
CWE-79
Cross-site Scripting
|
CVE-2015-3348
|
2024-11-21 11:29 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270924
|
- |
|
cloudwords
|
cloudwords_for_multilingual
|
Cross-site request forgery (CSRF) vulnerability in the Cloudwords for Multilingual Drupal module before 7.x-2.3 for Drupal allows remote attackers to hijack the authentication of unspecified victims …
|
CWE-352
Origin Validation Error
|
CVE-2015-3347
|
2024-11-21 11:29 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270925
|
- |
|
wikiwiki_project
|
wikiwiki
|
SQL injection vulnerability in the WikiWiki module before 6.x-1.2 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2015-3346
|
2024-11-21 11:29 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270926
|
- |
|
phplist_integration_project
|
phplist_integration
|
SQL injection vulnerability in the PHPlist Integration Module before 6.x-1.7 for Drupal allows remote administrators to execute arbitrary SQL commands via unspecified vectors, related to the "phpList…
|
CWE-89
SQL Injection
|
CVE-2015-3345
|
2024-11-21 11:29 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270927
|
- |
|
dlc_solutions
|
course
|
Cross-site scripting (XSS) vulnerability in the Course module 6.x-1.x before 6.x-1.2 and 7.x-1.x before 7.x-1.4 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2015-3344
|
2024-11-21 11:29 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270928
|
- |
|
opac_project
|
opac
|
Cross-site request forgery (CSRF) vulnerability in the OPAC module before 7.x-2.3 for Drupal allows remote attackers to hijack the authentication of unspecified victims for requests that remove a map…
|
CWE-352
Origin Validation Error
|
CVE-2015-3343
|
2024-11-21 11:29 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270929
|
- |
|
ubercart_currency_conversion_project
|
ubercart_currency_conversion
|
Open redirect vulnerability in the Ubercart Currency Conversion module before 6.x-1.2 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a UR…
|
NVD-CWE-Other
|
CVE-2015-3342
|
2024-11-21 11:29 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270930
|
- |
|
google
debian
opensuse
|
chrome
debian_linux
opensuse
|
Google Chrome before 42.0.2311.90 does not always ask the user before proceeding with CONTENT_SETTINGS_TYPE_FULLSCREEN and CONTENT_SETTINGS_TYPE_MOUSELOCK changes, which allows user-assisted remote a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-3336
|
2024-11-21 11:29 |
2015-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
