RSS   Vulnerabilities for 'Realname'   RSS

2012-08-14
 
CVE-2012-2298

CWE-79
 

 
Multiple cross-site scripting (XSS) vulnerabilities in the RealName module 6.x-1.x before 6.x-1.5 for Drupal allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) "user names in page titles" and (2) "autocomplete callbacks."

 
2009-12-31
 
CVE-2009-4524

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in the RealName module 6.x-1.x before 6.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via a realname (aka real name) element.

 

 >>> Vendor: Nancy wichmann 5 Products
Realname
Glossary
Taxonomy list
Sitedoc
Announcements


Copyright 2022, cxsecurity.com

 

Back to Top