Vulnerabilities > Chris Shattuck
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-09-09 | CVE-2009-3122 | Permissions, Privileges, and Access Controls vulnerability in Chris Shattuck Ajaxtable 5.X1.Xdev The Ajax Table module 5.x for Drupal does not perform access control, which allows remote attackers to delete arbitrary users and nodes via unspecified vectors. | 6.4 |
2009-09-09 | CVE-2009-3121 | Cross-Site Scripting vulnerability in Chris Shattuck Ajaxtable 5.X1.Xdev Cross-site scripting (XSS) vulnerability in the Ajax Table module 5.x for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |