| Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2012-2062 | 6.4 |
Open redirect vulnerability in the Redirecting click bouncer module for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
|
29-08-2017 - 01:31 | 17-09-2012 - 20:55 | |
| CVE-2012-2061 | 6.8 |
Cross-site request forgery (CSRF) vulnerability in the Admin tools module for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors involving "not checking tokens."
|
29-08-2017 - 01:31 | 17-09-2012 - 20:55 | |
| CVE-2012-2060 | 4.3 |
Cross-site scripting (XSS) vulnerability in the Admin tools module for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
29-08-2017 - 01:31 | 17-09-2012 - 20:55 | |
| CVE-2012-2059 | 4.3 |
Cross-site scripting (XSS) vulnerability in the ticketyboo News Ticker module for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
29-08-2017 - 01:31 | 17-09-2012 - 20:55 | |
| CVE-2012-2058 | 5.0 |
The Ubercart Payflow module for Drupal does not use a secure token, which allows remote attackers to forge payments via unspecified vectors.
|
29-08-2017 - 01:31 | 17-09-2012 - 20:55 | |
| CVE-2012-2057 | 6.8 |
Cross-site request forgery (CSRF) vulnerability in the Ubercart Bulk Stock Updater module for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors related to formAPI.
|
29-08-2017 - 01:31 | 17-09-2012 - 20:55 | |
| CVE-2012-2056 | 6.8 |
Cross-site request forgery (CSRF) vulnerability in the Content Lock module for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
|
18-09-2012 - 04:00 | 17-09-2012 - 20:55 |