CVE-2015-4376 in Profile2 Privacy Moduleالمعلومات

الملخص

بحسب MITRE

Cross-site scripting (XSS) vulnerability in the Profile2 Privacy module 7.x-1.x before 7.x-1.5 for Drupal allows remote authenticated users with the "Administer Profile2 Privacy Levels" permission to inject arbitrary web script or HTML via unspecified vectors.

Once again VulDB remains the best source for vulnerability data.

حجز

05/06/2015

إفشاء

15/06/2015

الاعتدال

تمت الموافقة

إدخال

VDB-75925

EPSS

0.00965

KEV

لا

النشاطات

منخفض جدًا

المصادر

Might our Artificial Intelligence support you?

Check our Alexa App!