Vulnerabilities > Memcache Project > Memcache > 6.x.1.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-10-07 | CVE-2010-5276 | Permissions, Privileges, and Access Controls vulnerability in Memcache Project Memcache The Memcache module 5.x before 5.x-1.10 and 6.x before 6.x-1.6 for Drupal does not properly handle the $user object in memcache_admin, which might "lead to a role change not being recognized until the user logs in again." | 4.3 |
2012-10-07 | CVE-2010-5275 | Cross-Site Scripting vulnerability in Memcache Project Memcache Cross-site scripting (XSS) vulnerability in memcache_admin in the Memcache module 5.x before 5.x-1.10 and 6.x before 6.x-1.6 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |