MidnightBSD

Advisories for rik_de_boer

CVE-2012-1060 LOW

Multiple cross-site scripting (XSS) vulnerabilities in revisioning_theme.inc in the Taxonomy module in the Revisioning module 6.x-3.13 and other versions before 6.x-3.14 for Drupal allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the (1) tags or (2) term parameters.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
rik_de_boer revisioning 6.x-3.13
CVE-2013-4597 MEDIUM

The Revisioning module 7.x-1.x before 7.x-1.6 for Drupal does not properly check node access permissions for content marked unpublished by the Scheduled module, which allows remote authenticated users to obtain sensitive information via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
rik_de_boer revisioning 7.x-1.4
rik_de_boer revisioning 7.x-1.3
rik_de_boer revisioning 7.x-1.2
rik_de_boer revisioning 7.x-1.0
rik_de_boer revisioning 7.x-1.x
rik_de_boer revisioning 7.x-1.1
rik_de_boer revisioning 7.x-1.5