CVE-2015-4356 in Webform Moduleinformation

Résumé

par MITRE

Cross-site scripting (XSS) vulnerability in the view-based webform results table in the Webform module 7.x-4.x before 7.x-4.4 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via a webform.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Réserver

05/06/2015

Divulgation

15/06/2015

Modérer

accepté

Entrée

VDB-75906

CPE

prêt

EPSS

0.00965

KEV

non

Activités

très faible

Sources

Interested in the pricing of exploits?

See the underground prices here!