CVE-2010-2002 in Wordfilterinformazioni

Riassunto

di MITRE

Cross-site scripting (XSS) vulnerability in the Wordfilter module 5.x before 5.x-1.1 and 6.x before 6.x-1.1 for Drupal allows remote authenticated users, with "administer words filtered" privileges, to inject arbitrary web script or HTML via the word list.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

20/05/2010

Divulgazione

20/05/2010

Moderazione

accettato

Voce

VDB-53295

CPE

pronto

CWE

CWE-79 (confermato)

CVSS

3.5 (VulDB)

EPSS

0.00864

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2010-2002
NVD	https://nvd.nist.gov/vuln/detail/CVE-2010-2002
CVE Details	https://www.cvedetails.com/cve/CVE-2010-2002/

◂ Precedente Visione D'ensemble Il prossimo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!