Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2008-3218

Опубликовано: 18 июл. 2008
Источник: debian
EPSS Низкий

Описание

Multiple cross-site scripting (XSS) vulnerabilities in Drupal 6.x before 6.3 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) free tagging taxonomy terms, which are not properly handled on node preview pages, and (2) unspecified OpenID values.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
drupal5not-affectedpackage
drupal-4.7not-affectedpackage

EPSS

Процентиль: 63%
0.00465
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2008-3218

ubuntu
около 17 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in Drupal 6.x before 6.3 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) free tagging taxonomy terms, which are not properly handled on node preview pages, and (2) unspecified OpenID values.

nvd логотип

CVE-2008-3218

nvd
около 17 лет назад

Multiple cross-site scripting (XSS) vulnerabilities in Drupal 6.x before 6.3 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) free tagging taxonomy terms, which are not properly handled on node preview pages, and (2) unspecified OpenID values.

github логотип

GHSA-6cj8-c359-p7q9

github
больше 3 лет назад

Drupal vulnerable to Cross-site Scripting

EPSS

Процентиль: 63%
0.00465
Низкий