CVE-2015-3386 in Node Access Product Moduleinfo

Summary

Cross-site scripting (XSS) vulnerability in the Node Access Product module for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a node title.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

04/21/2015

Disclosure

04/21/2015

CPE

ready

CVSS

3.5

EPSS

0.00209

Activities

Very Low

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2015-3386
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2015-3386
CVE Detailshttps://www.cvedetails.com/cve/CVE-2015-3386/

PreviousOverviewNext