Memcache Project » Memcache : Security Vulnerabilities, CVEs,
The Memcache module 5.x before 5.x-1.10 and 6.x before 6.x-1.6 for Drupal does not properly handle the $user object in memcache_admin, which might "lead to a role change not being recognized until the user logs in again."
Max CVSS
4.3
EPSS Score
0.10%
Published
2012-10-07
Updated
2012-10-08
Cross-site scripting (XSS) vulnerability in memcache_admin in the Memcache module 5.x before 5.x-1.10 and 6.x before 6.x-1.6 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
4.3
EPSS Score
0.14%
Published
2012-10-07
Updated
2012-10-08
2 vulnerabilities found