|
273451
|
- |
|
campaign_monitor_project
|
campaign_monitor
|
Multiple cross-site request forgery (CSRF) vulnerabilities in includes/campaignmonitor_lists.admin.inc in the Campaign Monitor module 7.x-1.0 for Drupal allow remote attackers to hijack the authentic…
|
CWE-352
Origin Validation Error
|
CVE-2015-4364
|
2024-11-21 11:30 |
2015-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273452
|
- |
|
registration_codes_project
|
registration_codes
|
Multiple cross-site scripting (XSS) vulnerabilities in the Registration codes module before 6.x-1.6, 6.x-2.x before 6.x-2.8, and 7.x-1.x before 7.x-1.2 for Drupal allow remote authenticated users wit…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4359
|
2024-11-21 11:30 |
2015-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273453
|
- |
|
ubercart_discount_coupons_project
|
ubercart_discount_coupons
|
Cross-site scripting (XSS) vulnerability in unspecified administration pages in the Ubercart Discount Coupons module 6.x-1.x before 6.x-1.8 for Drupal allows remote authenticated users with certain p…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4358
|
2024-11-21 11:30 |
2015-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273454
|
- |
|
webform_project
|
webform
|
Cross-site scripting (XSS) vulnerability in the Webform module before 6.x-3.22, 7.x-3.x before 7.x-3.22, and 7.x-4.x before 7.x-4.4 for Drupal allows remote authenticated users with certain permissio…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4357
|
2024-11-21 11:30 |
2015-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273455
|
- |
|
webform_project
|
webform
|
Cross-site scripting (XSS) vulnerability in the view-based webform results table in the Webform module 7.x-4.x before 7.x-4.4 for Drupal allows remote authenticated users with certain permissions to …
|
CWE-79
Cross-site Scripting
|
CVE-2015-4356
|
2024-11-21 11:30 |
2015-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273456
|
- |
|
watchdog_aggregator_project
|
watchdog_aggregator
|
Cross-site request forgery (CSRF) vulnerability in the Watchdog Aggregator module for Drupal allows remote attackers to hijack the authentication of administrators for requests that enable or disable…
|
CWE-352
Origin Validation Error
|
CVE-2015-4355
|
2024-11-21 11:30 |
2015-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273457
|
- |
|
ubercart_webform_integration_project
|
ubercart_webform_integration
|
Cross-site scripting (XSS) vulnerability in the Ubercart Webform Integration module before 6.x-1.8 and 7.x before 7.x-2.4 for Drupal allows remote authenticated users with certain permissions to inje…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4354
|
2024-11-21 11:30 |
2015-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273458
|
- |
|
osscube
|
custom_sitemap
|
Cross-site request forgery (CSRF) vulnerability in the Custom Sitemap module for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete sitemaps via un…
|
CWE-352
Origin Validation Error
|
CVE-2015-4353
|
2024-11-21 11:30 |
2015-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273459
|
- |
|
web-dorado
|
web-dorado_spider_video_player
|
Cross-site request forgery (CSRF) vulnerability in the Spider Video Player module for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete videos via…
|
CWE-352
Origin Validation Error
|
CVE-2015-4352
|
2024-11-21 11:30 |
2015-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273460
|
- |
|
web-dorado
|
web-dorado_spider_video_player
|
The Spider Video Player module for Drupal allows remote authenticated users with the "access Spider Video Player administration" permission to delete arbitrary files via a crafted URL.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4351
|
2024-11-21 11:30 |
2015-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
