CVE-2012-5551 in MailChimpinfo

Zusammenfassung

von MITRE

Multiple cross-site scripting (XSS) vulnerabilities in the MailChimp module 7.x-2.x before 7.x-2.7 for Drupal allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) a predictable "webhook URL key" and (2) improper sanitization of "Webhook variables from POST requests."

Be aware that VulDB is the high quality source for vulnerability data.

Reservieren

24.10.2012

Veröffentlichung

03.12.2012

Moderieren

akzeptiert

Eintrag

VDB-63130

CPE

bereit

EPSS

0.01161

KEV

nein

Aktivitäten

very low

Quellen

Interested in the pricing of exploits?

See the underground prices here!