Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-w3j2-7j6m-jpwr

Опубликовано: 17 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Cross-site scripting (XSS) vulnerability in unspecified administration pages in the Petition module 6.x-1.x before 6.x-1.3 for Drupal allows remote authenticated users with the "create petition" permission to inject arbitrary web script or HTML via unknown vectors.

Cross-site scripting (XSS) vulnerability in unspecified administration pages in the Petition module 6.x-1.x before 6.x-1.3 for Drupal allows remote authenticated users with the "create petition" permission to inject arbitrary web script or HTML via unknown vectors.

Ссылки

EPSS

Процентиль: 43%
0.00209
Низкий

CVE ID

CVE-2015-4377

Дефекты

CWE-79

Связанные уязвимости

nvd логотип

CVE-2015-4377

nvd
больше 10 лет назад

Cross-site scripting (XSS) vulnerability in unspecified administration pages in the Petition module 6.x-1.x before 6.x-1.3 for Drupal allows remote authenticated users with the "create petition" permission to inject arbitrary web script or HTML via unknown vectors.

EPSS

Процентиль: 43%
0.00209
Низкий

CVE ID

CVE-2015-4377

Дефекты

CWE-79