Drupal User Karma Module Cross Site Scripting and Multiple SQL Injection Vulnerabilities

Bugtraq ID: 32491
Class: Input Validation Error
CVE: CVE-2008-6275
Remote: Yes
Local: No
Published: Nov 26 2008 12:00AM
Updated: May 07 2015 05:20PM
Credit: St├ęphane Corlosquet (scor)
Vulnerable: Drupal User Karma 6.x-1.x-dev
Drupal User Karma 5.x-1.12
Not Vulnerable: Drupal User Karma 6.x-1.0-beta1
Drupal User Karma 5.x-1.13


 

Privacy Statement
Copyright 2010, SecurityFocus