NotCVE - vendor:"Ron Jerome" product:"Bibliography" version:"5.x-1.8"

3 results (0.004 seconds)

CVSS: 5.4EPSS: 0%CPEs: 34EXPL: 0

CVE-2010-2000

https://notcve.org/view.php?id=CVE-2010-2000

20 May 2010 — Cross-site scripting (XSS) vulnerability in the Bibliography (Biblio) module 5.x through 5.x-1.17 and 6.x through 6.x-1.9 for Drupal allows remote authenticated users, with "administer biblio" privileges, to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2010-1358. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Bibliography (Biblio) módulo v5.x hasta v5.x-1.17 y v6.x hasta v6.x-1.9 para Drupal permite a usuarios autenticados en remoto co... • http://drupal.org/node/796498 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 5.4EPSS: 0%CPEs: 32EXPL: 0

CVE-2010-1358

https://notcve.org/view.php?id=CVE-2010-1358

13 Apr 2010 — Cross-site scripting (XSS) vulnerability in the Bibliography (Biblio) module 5.x through 5.x-1.17 and 6.x through 6.x-1.9 for Drupal allows remote authenticated users, with "administer biblio" privileges, to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en el módulo Bibliography (Biblio) v5.x hasta v5.x-1.17 y v6.x hasta v6.x-1.9 para Drupal permite a usuarios autenticados remotamente, con privilegios de "administr... • http://drupal.org/node/683786 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.1EPSS: 0%CPEs: 40EXPL: 0

CVE-2009-3479

https://notcve.org/view.php?id=CVE-2009-3479

30 Sep 2009 — Cross-site scripting (XSS) vulnerability in Bibliography (Biblio) 5.x before 5.x-1.17 and 6.x before 6.x-1.6, a module for Drupal, allows remote attackers, with "create content displayed by the Bibliography module" permissions, to inject arbitrary web script or HTML via a title. Vulnerabilidad de ejecución de secuencias de comandos remotos en Bibliography (Biblio) v5.x anterior v5.x-1.17 y v6.x anterior v6.x-1.6, un módulo para Drupal, permite a atacantes remotos, con permisos "create content displayed by t... • http://drupal.org/node/534744 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •