CVE-2015-4377 in Petition Modulethông tin

Tóm tắt

Bởi MITRE

Cross-site scripting (XSS) vulnerability in unspecified administration pages in the Petition module 6.x-1.x before 6.x-1.3 for Drupal allows remote authenticated users with the "create petition" permission to inject arbitrary web script or HTML via unknown vectors.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Đặt trước

05/06/2015

Tiết lộ

15/06/2015

Kiểm duyệt

được chấp nhận

mục

VDB-75926

EPSS

0.00949

KEV

không

Các hoạt động

rất thấp

Nguồn

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!