Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2014-5022

Опубликовано: 22 июл. 2014
Источник: ubuntu
Приоритет: medium
CVSS2: 4.3

Описание

Cross-site scripting (XSS) vulnerability in the Ajax system in Drupal 7.x before 7.29 allows remote attackers to inject arbitrary web script or HTML via vectors involving forms with an Ajax-enabled textfield and a file field.

РелизСтатусПримечание
artful

not-affected

7.32-1
bionic

DNE

cosmic

DNE

devel

DNE

disco

DNE

esm-apps/xenial

not-affected

7.32-1
esm-infra-legacy/trusty

needed

esm-infra/focal

DNE

focal

DNE

jammy

DNE

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2014-5022

nvd
больше 11 лет назад

Cross-site scripting (XSS) vulnerability in the Ajax system in Drupal 7.x before 7.29 allows remote attackers to inject arbitrary web script or HTML via vectors involving forms with an Ajax-enabled textfield and a file field.

debian логотип

CVE-2014-5022

debian
больше 11 лет назад

Cross-site scripting (XSS) vulnerability in the Ajax system in Drupal ...

github логотип

GHSA-j47j-5wh7-4gmm

github
больше 3 лет назад

Cross-site scripting (XSS) vulnerability in the Ajax system in Drupal 7.x before 7.29 allows remote attackers to inject arbitrary web script or HTML via vectors involving forms with an Ajax-enabled textfield and a file field.

4.3 Medium

CVSS2