CVE-2011-4113
- EPSS 1.05%
- Veröffentlicht 17.02.2012 23:55:01
- Zuletzt bearbeitet 11.04.2025 00:51:21
SQL injection vulnerability in the Views module before 6.x-2.13 for Drupal allows remote attackers to execute arbitrary SQL commands via vectors related to "filters/arguments on certain types of views with specific configurations of arguments."
CVE-2010-4519
- EPSS 0.1%
- Veröffentlicht 23.12.2010 18:00:03
- Zuletzt bearbeitet 11.04.2025 00:51:21
Multiple cross-site request forgery (CSRF) vulnerabilities in the Views UI implementation in the Views module 5.x before 5.x-1.8 and 6.x before 6.x-2.11 for Drupal allow remote attackers to hijack the authentication of administrators for requests tha...
CVE-2010-4520
- EPSS 0.23%
- Veröffentlicht 23.12.2010 18:00:03
- Zuletzt bearbeitet 11.04.2025 00:51:21
Multiple cross-site scripting (XSS) vulnerabilities in the Views module 6.x before 6.x-2.11 for Drupal allow remote attackers to inject arbitrary web script or HTML via (1) a URL or (2) an aggregator feed title.
CVE-2010-4521
- EPSS 0.28%
- Veröffentlicht 23.12.2010 18:00:03
- Zuletzt bearbeitet 11.04.2025 00:51:21
Cross-site scripting (XSS) vulnerability in the Views module 6.x before 6.x-2.12 for Drupal allows remote attackers to inject arbitrary web script or HTML via a page path.