CVE-2011-5188 in Support Timerinformazioni

Riassunto

di MITRE

Cross-site scripting (XSS) vulnerability in the Support Timer module 6.x-1.x before 6.x-1.4 for Drupal allows remote authenticated users with the "track time spent" permission to inject arbitrary web script or HTML via unspecified vectors.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

19/09/2012

Divulgazione

20/09/2012

Moderazione

accettato

Voce

VDB-62385

CPE

pronto

CWE

CWE-79 (confermato)

CVSS

3.5 (VulDB)

EPSS

0.00941

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-5188
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-5188
CVE Details	https://www.cvedetails.com/cve/CVE-2011-5188/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!