Skip to main content

Node Invite

3 CVEs product

Monthly

CVE-2015-3372 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Node Invite module before 6.x-2.5 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a node title. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Node Invite
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2015-3371 MEDIUM PATCH This Month

Open redirect vulnerability in the Node Invite module before 6.x-2.5 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the destination. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.

Open Redirect Node Invite
NVD
CVSS 2.0
5.8
EPSS
0.3%
CVE-2015-3370 MEDIUM PATCH This Month

Cross-site request forgery (CSRF) vulnerability in the Node Invite module before 6.x-2.5 for Drupal allows remote attackers to hijack the authentication of users with the. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

CSRF Node Invite
NVD
CVSS 2.0
6.8
EPSS
0.1%
EPSS 0% CVSS 3.5
LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Node Invite module before 6.x-2.5 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a node title. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Node Invite
NVD
EPSS 0% CVSS 5.8
MEDIUM PATCH This Month

Open redirect vulnerability in the Node Invite module before 6.x-2.5 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the destination. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.

Open Redirect Node Invite
NVD
EPSS 0% CVSS 6.8
MEDIUM PATCH This Month

Cross-site request forgery (CSRF) vulnerability in the Node Invite module before 6.x-2.5 for Drupal allows remote attackers to hijack the authentication of users with the. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

CSRF Node Invite
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy