Vulnerabilities (CVE)

Filtered by vendor Structured Dynamics Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-7234 1 Structured Dynamics 1 Open Semantic Framework 2024-11-21 4.0 MEDIUM N/A
The OSF module 7.x-3.x before 7.x-3.1 for Drupal, when the OSF Ontology and OSF Import modules are enabled, allows user-assisted remote attackers to delete arbitrary files via unspecified vectors.
CVE-2015-7233 1 Structured Dynamics 1 Open Semantic Framework 2024-11-21 5.1 MEDIUM N/A
Cross-site request forgery (CSRF) vulnerability in the OSF module 7.x-3.x before 7.x-3.1 for Drupal, when the OSF Import module is enabled, allows remote attackers to hijack the authentication of administrators for requests that create new OSF datasets via unspecified vectors.
CVE-2015-7232 1 Structured Dynamics 1 Open Semantic Framework 2024-11-21 2.6 LOW N/A
Cross-site scripting (XSS) vulnerability in unspecified administration pages in the OSF module 7.x-3.x before 7.x-3.1 for Drupal, when the OSF Ontology module is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.