exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2007-0626

почти 19 лет назад

The comment_form_add_preview function in comment.module in Drupal before 4.7.6, and 5.x before 5.1, and vbDrupal, allows remote attackers with "post comments" privileges and access to multiple input filters to execute arbitrary code by previewing comments, which are not processed by "normal form validation routines."

CVSS2: 6.5

EPSS: Низкий

CVE-2007-0626

почти 19 лет назад

The comment_form_add_preview function in comment.module in Drupal before 4.7.6, and 5.x before 5.1, and vbDrupal, allows remote attackers with "post comments" privileges and access to multiple input filters to execute arbitrary code by previewing comments, which are not processed by "normal form validation routines."

CVSS2: 6.5

EPSS: Низкий

CVE-2007-0626

почти 19 лет назад

The comment_form_add_preview function in comment.module in Drupal befo ...

CVSS2: 6.5

EPSS: Низкий

GHSA-phv5-85pf-xrp3

больше 3 лет назад

The comment_form_add_preview function in comment.module in Drupal before 4.7.6, and 5.x before 5.1, and vbDrupal, allows remote attackers with "post comments" privileges and access to multiple input filters to execute arbitrary code by previewing comments, which are not processed by "normal form validation routines."

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2007-0626 The comment_form_add_preview function in comment.module in Drupal before 4.7.6, and 5.x before 5.1, and vbDrupal, allows remote attackers with "post comments" privileges and access to multiple input filters to execute arbitrary code by previewing comments, which are not processed by "normal form validation routines."	CVSS2: 6.5	5% Низкий	почти 19 лет назад
CVE-2007-0626 The comment_form_add_preview function in comment.module in Drupal before 4.7.6, and 5.x before 5.1, and vbDrupal, allows remote attackers with "post comments" privileges and access to multiple input filters to execute arbitrary code by previewing comments, which are not processed by "normal form validation routines."	CVSS2: 6.5	5% Низкий	почти 19 лет назад
CVE-2007-0626 The comment_form_add_preview function in comment.module in Drupal befo ...	CVSS2: 6.5	5% Низкий	почти 19 лет назад
GHSA-phv5-85pf-xrp3 The comment_form_add_preview function in comment.module in Drupal before 4.7.6, and 5.x before 5.1, and vbDrupal, allows remote attackers with "post comments" privileges and access to multiple input filters to execute arbitrary code by previewing comments, which are not processed by "normal form validation routines."		5% Низкий	больше 3 лет назад

Уязвимостей на страницу