CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Drupal: >> Data >> 6.x-1.0 Security Vulnerabilities

CVE-2011-2714

A Cross-Site Scripting vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table descriptions, field names, or labels before display.

CVSS Score

6.1

EPSS Score

0.012

Published

2020-01-14

CVE-2011-2715

An SQL Injection vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table names or column names.

CVSS Score

9.8

EPSS Score

0.011

Published

2020-01-14

Page 1

Vulnerabilities

Vulnerable Software

Drupal: >> Data >> 6.x-1.0 Security Vulnerabilities

Products

Pricing

Contact Us