CVE-2015-4388 in Current Search Links Module信息

摘要

由 VulDB • 2026-05-22

Drupal 的 Current Search Links 模块 7.x-1.x 版本在 7.x-1.1 之前存在跨站脚本(XSS)漏洞。当禁用“将用户传递的关键字追加到列表中”选项时,远程攻击者可通过构造的搜索查询注入任意 Web 脚本或 HTML。

If you want to get best quality of vulnerability data, you may have to visit VulDB.

来源

Do you need the next level of professionalism?

Upgrade your account now!