Lucene search
HistoryMay 21, 2010 - 8:30 p.m.
CVE-2010-2010
cve-2010-2010
cross-site scripting
xss
vulnerability
chaos tool suite
ctools
drupal
5.9 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
60.1%
Multiple cross-site scripting (XSS) vulnerabilities in the Chaos Tool Suite (aka CTools) module 6.x before 6.x-1.4 for Drupal allow remote attackers to inject arbitrary web script or HTML via a node title.
Affected configurations
Node
chaos_tool_suite_projectctoolsMatch6.x-1.0drupal
ORchaos_tool_suite_projectctoolsMatch6.x-1.0alpha1drupal
ORchaos_tool_suite_projectctoolsMatch6.x-1.0alpha2drupal
ORchaos_tool_suite_projectctoolsMatch6.x-1.0alpha3drupal
ORchaos_tool_suite_projectctoolsMatch6.x-1.0beta1drupal
ORchaos_tool_suite_projectctoolsMatch6.x-1.0beta2drupal
ORchaos_tool_suite_projectctoolsMatch6.x-1.0beta3drupal
ORchaos_tool_suite_projectctoolsMatch6.x-1.0beta4drupal
ORchaos_tool_suite_projectctoolsMatch6.x-1.0rc1drupal
ORchaos_tool_suite_projectctoolsMatch6.x-1.1drupal
ORchaos_tool_suite_projectctoolsMatch6.x-1.2drupal
ORchaos_tool_suite_projectctoolsMatch6.x-1.3drupal
ORchaos_tool_suite_projectctoolsMatch6.x-1.xdevdrupal
Related
cvelist
cvelist
CVE-2010-2010
2010-05-21 20:00:00
prion
prion
Cross site scripting
2010-05-21 20:30:00
nvd
nvd
CVE-2010-2010
2010-05-21 20:30:01
5.9 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
60.1%
Related for CVE-2010-2010