CVE-2011-5188 in Support Timerinfo

Zusammenfassung

von MITRE

Cross-site scripting (XSS) vulnerability in the Support Timer module 6.x-1.x before 6.x-1.4 for Drupal allows remote authenticated users with the "track time spent" permission to inject arbitrary web script or HTML via unspecified vectors.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

19.09.2012

Veröffentlichung

20.09.2012

Moderieren

akzeptiert

Eintrag

VDB-62385

CPE

bereit

CWE

CWE-79 (bestätigt)

CVSS

3.5 (VulDB)

EPSS

0.00941

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-5188
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-5188
CVE Details	https://www.cvedetails.com/cve/CVE-2011-5188/

◂ Zurück Übersicht Weiter ▸

Interested in the pricing of exploits?

See the underground prices here!