Spider Contacts Project Spider Contacts — known CVE vulnerabilities
Every CVE whose affected-product data names Spider Contacts Project Spider Contacts, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2015-4348 — CVSS 6.0 (medium): SQL injection vulnerability in the Spider Contacts module for Drupal allows remote authenticated users with the "access Spider Contacts…
CVE-2015-4349 — CVSS 5.8 (medium): Cross-site request forgery (CSRF) vulnerability in the Spider Contacts module for Drupal allows remote attackers to hijack the…