Filtered by vendor Drupal Subscriptions
Filtered by product Data Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2011-2715 1 Drupal 2 Data, Drupal 2024-11-21 9.8 Critical
An SQL Injection vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table names or column names.
CVE-2011-2714 1 Drupal 2 Data, Drupal 2024-11-21 6.1 Medium
A Cross-Site Scripting vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table descriptions, field names, or labels before display.