CVE-2014-5022 in Drupalinfo

Zusammenfassung (Englisch)

Cross-site scripting (XSS) vulnerability in the Ajax system in Drupal 7.x before 7.29 allows remote attackers to inject arbitrary web script or HTML via vectors involving forms with an Ajax-enabled textfield and a file field.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservieren

22.07.2014

Veröffentlichung

22.07.2014

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
67261	Drupal Ajax Cross Site Scripting	79	High	Offizieller Fix	CVE-2014-5022

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

MITRE
NVD
CVE Details

◂ ZurückÜbersichtWeiter ▸

Interested in the pricing of exploits?

See the underground prices here!