Vulnerabilities > Drupal > Trailscout Module
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-06-25 | CVE-2008-2850 | SQL Injection vulnerability in Drupal Trailscout Module SQL injection vulnerability in the TrailScout module 5.x before 5.x-1.4 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified cookies, related to improper use of the Drupal database API. | 7.5 |
| 2008-06-25 | CVE-2008-2849 | Cross-Site Scripting vulnerability in Drupal Trailscout Module 5 Cross-site scripting (XSS) vulnerability in the TrailScout module 5.x before 5.x-1.4 for Drupal allows remote authenticated users, with create post permissions, to inject arbitrary web script or HTML via unspecified vectors. | 3.5 |