CVE-2009-1069
- EPSS 0.4%
- Published 26.03.2009 05:51:52
- Last modified 09.04.2025 00:30:58
Multiple cross-site scripting (XSS) vulnerabilities in the node edit form feature in Drupal Content Construction Kit (CCK) 6.x before 6.x-2.2, a module for Drupal, allow remote attackers to inject arbitrary web script or HTML via the (1) titles of ca...
CVE-2008-6229
- EPSS 0.25%
- Published 20.02.2009 23:30:00
- Last modified 09.04.2025 00:30:58
Cross-site scripting (XSS) vulnerability in the administrative interface in Drupal Content Construction Kit (CCK) 5.x before 5.x-1.10 and 6.x before 6.x-2.0, a module for Drupal, allows remote authenticated users with "administer content" permissions...
CVE-2007-4363
- EPSS 1.12%
- Published 15.08.2007 19:17:00
- Last modified 09.04.2025 00:30:58
Multiple cross-site scripting (XSS) vulnerabilities in the nodereference module in Drupal Content Construction Kit (CCK) before 4.7.x-1.6, and 5.x before 5.x-1.6 ,allow remote attackers to inject arbitrary web script or HTML via nodereference fields,...