Karen Stevenson Date Module 6.x-2.0 Beta 2

CPE Details

Karen Stevenson Date Module 6.x-2.0 Beta 2
6.x-2.0
2012-09-20
16h45 +00:00
2012-09-21
18h12 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:karen_stevenson:date:6.x-2.0:beta2:*:*:*:*:*:*

Informations

Vendor

karen_stevenson

Product

date

Version

6.x-2.0

Update

beta2

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2012-1626 2012-09-19 23h00 +00:00 SQL injection vulnerability in the conversion form for Events in the Date module 6.x-2.x before 6.x-2.8 for Drupal allows remote authenticated users with the "administer Date Tools" privilege to execute arbitrary SQL commands via unspecified vectors.
6
CVE-2009-3156 2009-09-10 16h00 +00:00 Cross-site scripting (XSS) vulnerability in the Date Tools sub-module in the Date module 6.x before 6.x-2.3 for Drupal allows remote authenticated users, with "use date tools" or "administer content types" privileges, to inject arbitrary web script or HTML via a "Content type label" field.
2.1