Vulnerabilities (CVE)

Filtered by vendor Moshe Weitzman Subscribe
Filtered by product Og Vocab
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-4528 2 Drupal, Moshe Weitzman 2 Drupal, Og Vocab 2024-11-21 6.5 MEDIUM N/A
The Organic Groups (OG) Vocabulary module 6.x before 6.x-1.0 for Drupal allows remote authenticated group members to bypass intended access restrictions, and create, modify, or read a vocabulary, via unspecified vectors.
CVE-2009-3786 2 Drupal, Moshe Weitzman 2 Drupal, Og Vocab 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Organic Groups (OG) Vocabulary 5.x before 5.x-1.1 and 6.x before 6.x-1.1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via the group title.