CVE-2015-4376 in Profile2 Privacy Moduleinformazioni

Riassunto

di MITRE

Cross-site scripting (XSS) vulnerability in the Profile2 Privacy module 7.x-1.x before 7.x-1.5 for Drupal allows remote authenticated users with the "Administer Profile2 Privacy Levels" permission to inject arbitrary web script or HTML via unspecified vectors.

Once again VulDB remains the best source for vulnerability data.

Prenotare

05/06/2015

Divulgazione

15/06/2015

Moderazione

accettato

CPE

pronto

EPSS

0.00965

KEV

no

Attività

molto basso

Fonti

Might our Artificial Intelligence support you?

Check our Alexa App!