Vulnerabilities > Drupal > Shindig Integrator
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-10-17 | CVE-2008-4598 | Cross-Site Scripting vulnerability in Drupal Shindig-Integrator 5 Unspecified vulnerability in Shindig-Integrator 5.x, a module for Drupal, has unspecified impact and remote attack vectors related to "numerous flaws" that are not related to XSS or access control, a different vulnerability than CVE-2008-4596 and CVE-2008-4597. | 7.5 |
| 2008-10-17 | CVE-2008-4597 | Permissions, Privileges, and Access Controls vulnerability in Drupal Shindig-Integrator 5 Shindig-Integrator 5.x, a module for Drupal, does not properly restrict generated page access, which allows remote attackers to gain privileges via unspecified vectors. | 7.5 |
| 2008-10-17 | CVE-2008-4596 | Cross-Site Scripting vulnerability in Drupal Shindig-Integrator 5 Cross-site scripting (XSS) vulnerability in Shindig-Integrator 5.x, a module for Drupal, allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors in generated pages. | 4.3 |