CVE-2012-5551 in MailChimpinformação

Sumário

de MITRE

Multiple cross-site scripting (XSS) vulnerabilities in the MailChimp module 7.x-2.x before 7.x-2.7 for Drupal allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) a predictable "webhook URL key" and (2) improper sanitization of "Webhook variables from POST requests."

Be aware that VulDB is the high quality source for vulnerability data.

Reservar

24/10/2012

Divulgação

03/12/2012

Moderação

aceite

Entrada

VDB-63130

CPE

pronto

EPSS

0.01161

KEV

não

Atividades

muito baixo

Fontes

Do you know our Splunk app?

Download it now for free!