Vulnerabilities (CVE)

Filtered by vendor Chris Shattuck Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-3122 2 Chris Shattuck, Drupal 2 Ajaxtable, Drupal 2024-11-21 6.4 MEDIUM N/A
The Ajax Table module 5.x for Drupal does not perform access control, which allows remote attackers to delete arbitrary users and nodes via unspecified vectors.
CVE-2009-3121 2 Chris Shattuck, Drupal 2 Ajaxtable, Drupal 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the Ajax Table module 5.x for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.