CVE-2015-4377 in Petition Moduleالمعلومات

الملخص

بحسب MITRE

Cross-site scripting (XSS) vulnerability in unspecified administration pages in the Petition module 6.x-1.x before 6.x-1.3 for Drupal allows remote authenticated users with the "create petition" permission to inject arbitrary web script or HTML via unknown vectors.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

حجز

05/06/2015

إفشاء

15/06/2015

الاعتدال

تمت الموافقة

إدخال

VDB-75926

EPSS

0.00949

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you want to use VulDB in your project?

Use the official API to access entries easily!