CVSS: 5.4EPSS: 0%CPEs: 30EXPL: 0CVE-2014-8078
https://notcve.org/view.php?id=CVE-2014-8078
09 Oct 2014 — Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 6.x-1.x before 6.x-1.19, 7.x-1.x before 7.x-1.3, and 7.x-2.x before 7.x-2.0 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via vectors related to nodes. Vulnerabilidad de XSS en el módulo Print (también conocido como las versiones Printer, e-mail y PDF) 6.x-1.x anterior a 6.x-1.19, 7.x-1.x anterior a 7.x-1.3, y 7.x-2.x anterior a 7.x-2.0 para Drupa... • http://secunia.com/advisories/57402 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 30EXPL: 0CVE-2012-2084
https://notcve.org/view.php?id=CVE-2012-2084
22 Nov 2012 — Cross-site scripting (XSS) vulnerability in the Printer, email and PDF versions module 6.x-1.x before 6.x-1.15 and 7.x-1.x before 7.x-1.0 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, probably the PATH_INFO. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en el módulo de impresión, correo electrónico y PDF versiones 6.x-1.x antes de 6.x-1.15 y 7.x-1.x antes 7.x-1.0 para Drupal, permite a atacantes remotos inyectar secuencias... • http://drupal.org/node/1515060 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 27EXPL: 0CVE-2009-4525
https://notcve.org/view.php?id=CVE-2009-4525
31 Dec 2009 — Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 5.x before 5.x-4.9 and 6.x before 6.x-1.9, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via crafted data in a list of links. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en el módulo Print (también conocido como Printer, para versiones de correo electrónico y PDF) v5.x anterior a v5.x-4.9 y v6.x anterior a v6.x-1.9, un módulo para Drupal, permite a a... • http://drupal.org/node/604804 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 0%CPEs: 27EXPL: 0CVE-2009-4526
https://notcve.org/view.php?id=CVE-2009-4526
31 Dec 2009 — The Send by e-mail sub-module in the Print (aka Printer, e-mail and PDF versions) module 5.x before 5.x-4.9 and 6.x before 6.x-1.9, a module for Drupal, does not properly enforce privilege requirements, which allows remote attackers to read page titles by requesting a "Send to friend" form. El sub-módulo Send by e-mail en el módulo Print (también conocido como Printer, e-mail y versiones PDF) v5.x anterior a v5.x-4.9 y v6.x anterior a v6.x-1.9, para Drupal, no refuerza adecuadamente los privilegios, lo que ... • http://drupal.org/node/604804 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.4EPSS: 0%CPEs: 36EXPL: 0CVE-2009-3210
https://notcve.org/view.php?id=CVE-2009-3210
16 Sep 2009 — Multiple cross-site scripting (XSS) vulnerabilities in the Print (aka Printer, e-mail and PDF versions) module 5.x before 5.x-4.8 and 6.x before 6.x-1.8, a module for Drupal, allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. Múltiples vulnerabilidades de ejecución de secuencias de comandos en sitios cruzados en el módulo Print (también conocido como Printer, versión para e-mail y PDF) v5.x anterior a v5.x-4.8 y v6.x anterior a v6.x-1.8 para Drupal, permite a us... • http://drupal.org/node/554326 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 36EXPL: 0CVE-2009-1823
https://notcve.org/view.php?id=CVE-2009-1823
29 May 2009 — Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 5.x before 5.x-4.7 and 6.x before 6.x-1.7, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML by modifying a document head, before the Content-Type META element, to contain crafted UTF-8 byte sequences that are treated as UTF-7 by Internet Explorer 6 and 7, a related issue to CVE-2009-1575. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en el módulo Print (t... • http://drupal.org/node/461674 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 34EXPL: 0CVE-2009-1343
https://notcve.org/view.php?id=CVE-2009-1343
20 Apr 2009 — Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 5.x before 5.x-4.5 and 6.x before 6.x-1.5, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via content titles. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en el modulo módulo Print o Printer (en sus variantes e-mail y PDF) en sus versiones 5.x anteriores a 5.x-4.5 y 6.x anteriores a 6.x-1.5 del gestor de contenidos Drupal. Permite a usuarios remotos in... • http://drupal.org/node/434748 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 33EXPL: 0CVE-2009-1047
https://notcve.org/view.php?id=CVE-2009-1047
23 Mar 2009 — Cross-site scripting (XSS) vulnerability in the Send by e-mail module in the "Printer, e-mail and PDF versions" module 5.x before 5.x-4.4 and 6.x before 6.x-1.4, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via vectors involving outbound HTML e-mail. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados en el módulo "Enviar-por-email" en el modulo de Drupal "versiones de PDF, e-mail e impresora" en las versiones 5.x antes de 5.x-4.4 y 6.x antes de 6.... • http://drupal.org/node/406516 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 0%CPEs: 32EXPL: 0CVE-2009-1037
https://notcve.org/view.php?id=CVE-2009-1037
20 Mar 2009 — Unspecified vulnerability in the Send by e-mail module in the "Printer, e-mail and PDF versions" module 5.x before 5.x-4.4 and 6.x before 6.x-1.4, a module for Drupal, allows remote attackers to send unlimited spam messages via unknown vectors related to the flood control API. Vulnerabilidad sin especificar en el módulo Send by e-mail en los módulos "Printer, e-mail y PDF versiones" v5.x anterior a v5.x-4.4 y v6.x anterior a v6.x-1.4, un módulo para Drupal, permite a atacantes remotos enviar mensajes de cor... • http://drupal.org/node/406516 •