CVSS: 5.4EPSS: 0%CPEs: 34EXPL: 0CVE-2010-2000
https://notcve.org/view.php?id=CVE-2010-2000
20 May 2010 — Cross-site scripting (XSS) vulnerability in the Bibliography (Biblio) module 5.x through 5.x-1.17 and 6.x through 6.x-1.9 for Drupal allows remote authenticated users, with "administer biblio" privileges, to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2010-1358. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Bibliography (Biblio) módulo v5.x hasta v5.x-1.17 y v6.x hasta v6.x-1.9 para Drupal permite a usuarios autenticados en remoto co... • http://drupal.org/node/796498 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 32EXPL: 0CVE-2010-1358
https://notcve.org/view.php?id=CVE-2010-1358
13 Apr 2010 — Cross-site scripting (XSS) vulnerability in the Bibliography (Biblio) module 5.x through 5.x-1.17 and 6.x through 6.x-1.9 for Drupal allows remote authenticated users, with "administer biblio" privileges, to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en el módulo Bibliography (Biblio) v5.x hasta v5.x-1.17 y v6.x hasta v6.x-1.9 para Drupal permite a usuarios autenticados remotamente, con privilegios de "administr... • http://drupal.org/node/683786 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 40EXPL: 0CVE-2009-3479
https://notcve.org/view.php?id=CVE-2009-3479
30 Sep 2009 — Cross-site scripting (XSS) vulnerability in Bibliography (Biblio) 5.x before 5.x-1.17 and 6.x before 6.x-1.6, a module for Drupal, allows remote attackers, with "create content displayed by the Bibliography module" permissions, to inject arbitrary web script or HTML via a title. Vulnerabilidad de ejecución de secuencias de comandos remotos en Bibliography (Biblio) v5.x anterior v5.x-1.17 y v6.x anterior v6.x-1.6, un módulo para Drupal, permite a atacantes remotos, con permisos "create content displayed by t... • http://drupal.org/node/534744 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 2EXPL: 0CVE-2009-3488
https://notcve.org/view.php?id=CVE-2009-3488
30 Sep 2009 — Cross-site scripting (XSS) vulnerability in the Bibliography (aka Biblio) module 6.x-1.6 for Drupal allows remote authenticated users, with certain content-creation privileges, to inject arbitrary web script or HTML via the Title field, probably a different vulnerability than CVE-2009-3479. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en Bibliography (como Biblio) módulo v6.x-1.6 para Drupal permite a usuarios autentificados remotamente, con ciertos privilegios de creación ... • http://seclists.org/fulldisclosure/2009/Sep/0373.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •