Vulnerabilities (CVE)

Filtered by vendor Drupal Subscribe
Filtered by product Shindig-integrator
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-4597 1 Drupal 1 Shindig-integrator 2024-02-04 7.5 HIGH N/A
Shindig-Integrator 5.x, a module for Drupal, does not properly restrict generated page access, which allows remote attackers to gain privileges via unspecified vectors.
CVE-2008-4596 1 Drupal 1 Shindig-integrator 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Shindig-Integrator 5.x, a module for Drupal, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors in generated pages.
CVE-2008-4598 1 Drupal 1 Shindig-integrator 2024-02-04 7.5 HIGH N/A
Unspecified vulnerability in Shindig-Integrator 5.x, a module for Drupal, has unspecified impact and remote attack vectors related to "numerous flaws" that are not related to XSS or access control, a different vulnerability than CVE-2008-4596 and CVE-2008-4597.