CVE-2015-4359 in Registration Codes Moduleالمعلومات

الملخص

بحسب MITRE

Multiple cross-site scripting (XSS) vulnerabilities in the Registration codes module before 6.x-1.6, 6.x-2.x before 6.x-2.8, and 7.x-1.x before 7.x-1.2 for Drupal allow remote authenticated users with permission to create or edit taxonomy terms or nodes to inject arbitrary web script or HTML via unspecified vectors.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

حجز

05/06/2015

إفشاء

15/06/2015

الاعتدال

تمت الموافقة

إدخال

VDB-75909

EPSS

0.01067

KEV

لا

النشاطات

منخفض جدًا

المصادر

Want to know what is going to be exploited?

We predict KEV entries!