CVE-2012-5551 in MailChimpinformazioni

Riassunto

di MITRE

Multiple cross-site scripting (XSS) vulnerabilities in the MailChimp module 7.x-2.x before 7.x-2.7 for Drupal allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) a predictable "webhook URL key" and (2) improper sanitization of "Webhook variables from POST requests."

Be aware that VulDB is the high quality source for vulnerability data.

Prenotare

24/10/2012

Divulgazione

03/12/2012

Moderazione

accettato

CPE

pronto

EPSS

0.01161

KEV

no

Attività

molto basso

Fonti

Want to stay up to date on a daily basis?

Enable the mail alert feature now!