|
292071
|
- |
|
kyle_browning
|
cdn2_video
|
Cross-site request forgery (CSRF) vulnerability in the CDN2 Video module 6.x for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
|
CWE-352
Origin Validation Error
|
CVE-2012-2155
|
2024-11-21 10:38 |
2012-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292072
|
- |
|
kyle_browning
|
cdn2_video
|
Cross-site scripting (XSS) vulnerability in the CDN2 Video module 6.x for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2154
|
2024-11-21 10:38 |
2012-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292073
|
- |
|
chaos_tool_suite_project
|
ctools
|
Cross-site scripting (XSS) vulnerability in the Chaos tool suite (aka CTools) module 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with the post comments permission to inject ar…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2082
|
2024-11-21 10:38 |
2012-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292074
|
- |
|
moshe_weitzman
|
organic_groups
|
The Organic Groups (OG) module 6.x-2.x before 6.x-2.3 for Drupal does not properly restrict access, which allows remote attackers to obtain sensitive information such as private group titles via a re…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2081
|
2024-11-21 10:38 |
2012-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292075
|
- |
|
node_limit_number_project
|
node_limitnumber
|
Cross-site request forgery (CSRF) vulnerability in the Node Limit Number module before 6.x-1.2 for Drupal allows remote attackers to hijack the authentication of users with the administer node limitn…
|
CWE-352
Origin Validation Error
|
CVE-2012-2080
|
2024-11-21 10:38 |
2012-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292076
|
- |
|
rob_loach
|
sharethis
|
Cross-site request forgery (CSRF) vulnerability in the ShareThis module 7.x-2.x before 7.x-2.3 for Drupal allows remote attackers to hijack the authentication of users with administer sharethis permi…
|
CWE-352
Origin Validation Error
|
CVE-2012-2077
|
2024-11-21 10:38 |
2012-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292077
|
- |
|
rob_loach
|
sharethis
|
Cross-site scripting (XSS) vulnerability in the administration forms in the ShareThis module 7.x-2.x before 7.x-2.3 for Drupal allows remote authenticated users with administer sharethis permissions …
|
CWE-79
Cross-site Scripting
|
CVE-2012-2076
|
2024-11-21 10:38 |
2012-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292078
|
- |
|
steindom
|
contact_save
|
Cross-site scripting (XSS) vulnerability in the Contact Save module 6.x-1.x before 6.x-1.5 for Drupal allows remote authenticated users with the access site-wide contact form permission to inject arb…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2075
|
2024-11-21 10:38 |
2012-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292079
|
- |
|
ubercart_views_project
|
uc_views
|
Unspecified vulnerability in certain default views in the Ubercart Views module 6.x before 6.x-3.2 for Drupal allows remote attackers to obtain sensitive information via unknown attack vectors.
|
NVD-CWE-noinfo
|
CVE-2012-2074
|
2024-11-21 10:38 |
2012-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292080
|
- |
|
kristof_de_jaeger
|
bundle_copy
|
The Bundle copy module 7.x-1.x before 7.x-1.1 for Drupal does not check for the "use PHP for settings" permission while importing settings, which allows remote authenticated users with certain permis…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2073
|
2024-11-21 10:38 |
2012-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
