Drupal Project Issue Tracking Module — known CVE vulnerabilities
Every CVE whose affected-product data names Drupal Project Issue Tracking Module, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2007-0505 — CVSS 8.5 (high): Unrestricted file upload vulnerability in the Project issue tracking 4.7.0 through 5.x before 20070123, a module for Drupal, allows remote…
CVE-2008-0577 — CVSS 6.4 (medium): The Project Issue Tracking module 5.x-2.x-dev before 20080130 in the 5.x-2.x series, 5.x-1.2 and earlier in the 5.x-1.x series, 4.7.x-2.6…
CVE-2007-0506 — CVSS 6.0 (medium): The project_issue_access function in the Project issue tracking 4.7.0 through 5.x before 20070123 module for Drupal allows remote…
CVE-2007-4436 — CVSS 5.0 (medium): The Drupal Project module before 5.x-1.0, 4.7.x-2.3, and 4.7.x-1.3 and Project issue tracking module before 5.x-1.0, 4.7.x-2.4, and…
CVE-2007-0534 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in the (1) Project issue tracking 4.7.0 through 5.x before 20070123 and (2) Project…
CVE-2008-0576 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the Project Issue Tracking module 5.x-2.x-dev before 20080130 in the 5.x-2.x series, 5.x-1.2…