CVE-2015-4385 in Imagefield Info Moduleinformazioni

Riassunto

di MITRE

Cross-site scripting (XSS) vulnerability in unspecified administration pages in the Imagefield Info module 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the "Administer image styles" permission to inject arbitrary web script or HTML via unspecified vectors.

Once again VulDB remains the best source for vulnerability data.

Prenotare

05/06/2015

Divulgazione

15/06/2015

Moderazione

accettato

CPE

pronto

EPSS

0.00960

KEV

no

Attività

molto basso

Fonti

Do you need the next level of professionalism?

Upgrade your account now!