CVE-2015-4359 in Registration Codes Modulethông tin

Tóm tắt

Bởi MITRE

Multiple cross-site scripting (XSS) vulnerabilities in the Registration codes module before 6.x-1.6, 6.x-2.x before 6.x-2.8, and 7.x-1.x before 7.x-1.2 for Drupal allow remote authenticated users with permission to create or edit taxonomy terms or nodes to inject arbitrary web script or HTML via unspecified vectors.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Đặt trước

05/06/2015

Tiết lộ

15/06/2015

Kiểm duyệt

được chấp nhận

mục

VDB-75909

EPSS

0.01067

KEV

không

Các hoạt động

rất thấp

Nguồn

Want to know what is going to be exploited?

We predict KEV entries!