Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-4384
HistoryOct 09, 2013 - 2:54 p.m.

CVE-2013-4384

2013-10-0914:54:26
CWE-79
[email protected]
web.nvd.nist.gov
14
cve-2013-4384
xss
google site search
drupal
nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.4%

JSON

Cross-site scripting (XSS) vulnerability in Google Site Search module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.10 for Drupal allows remote attackers to inject arbitrary web script or HTML by causing crafted data to be returned by the Google API.

Affected configurations

NVD
Node
google_site_search_projectgoogle_site_search_moduleMatch6.x-1.0
OR
google_site_search_projectgoogle_site_search_moduleMatch6.x-1.0rc1
OR
google_site_search_projectgoogle_site_search_moduleMatch6.x-1.1
OR
google_site_search_projectgoogle_site_search_moduleMatch6.x-1.2
OR
google_site_search_projectgoogle_site_search_moduleMatch6.x-1.3
OR
google_site_search_projectgoogle_site_search_moduleMatch6.x-1.xdev
OR
google_site_search_projectgoogle_site_search_moduleMatch7.x-1.0
OR
google_site_search_projectgoogle_site_search_moduleMatch7.x-1.1
OR
google_site_search_projectgoogle_site_search_moduleMatch7.x-1.1rc1
OR
google_site_search_projectgoogle_site_search_moduleMatch7.x-1.2
OR
google_site_search_projectgoogle_site_search_moduleMatch7.x-1.3
OR
google_site_search_projectgoogle_site_search_moduleMatch7.x-1.4
OR
google_site_search_projectgoogle_site_search_moduleMatch7.x-1.4beta1
OR
google_site_search_projectgoogle_site_search_moduleMatch7.x-1.5
OR
google_site_search_projectgoogle_site_search_moduleMatch7.x-1.6
OR
google_site_search_projectgoogle_site_search_moduleMatch7.x-1.7
OR
google_site_search_projectgoogle_site_search_moduleMatch7.x-1.8
OR
google_site_search_projectgoogle_site_search_moduleMatch7.x-1.9
OR
google_site_search_projectgoogle_site_search_moduleMatch7.x-1.xdev
AND
drupaldrupalMatch-
CPENameOperatorVersion
google_site_search_project:google_site_search_modulegoogle site search project google site search moduleeq6.x-1.0
google_site_search_project:google_site_search_modulegoogle site search project google site search moduleeq6.x-1.1
google_site_search_project:google_site_search_modulegoogle site search project google site search moduleeq6.x-1.2
google_site_search_project:google_site_search_modulegoogle site search project google site search moduleeq6.x-1.3
google_site_search_project:google_site_search_modulegoogle site search project google site search moduleeq6.x-1.x
google_site_search_project:google_site_search_modulegoogle site search project google site search moduleeq7.x-1.0
google_site_search_project:google_site_search_modulegoogle site search project google site search moduleeq7.x-1.1
google_site_search_project:google_site_search_modulegoogle site search project google site search moduleeq7.x-1.2
google_site_search_project:google_site_search_modulegoogle site search project google site search moduleeq7.x-1.3
google_site_search_project:google_site_search_modulegoogle site search project google site search moduleeq7.x-1.4
Rows per page:
1-10 of 161

Related

nessus 1
prion 1
drupal 1
cvelist 1
nvd 1
nessus
nessus
Drupal Google Site Search Module API Data Handling XSS
2013-11-15 00:00:00
prion
prion
Cross site scripting
2013-10-09 14:54:00
drupal
drupal
SA-CONTRIB-2013-077 - Google Site Search - Cross Site Scripting (XSS)
2013-09-18 00:00:00
cvelist
cvelist
CVE-2013-4384
2013-10-09 14:44:00
nvd
nvd
CVE-2013-4384
2013-10-09 14:54:26

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.4%

JSON
Related for CVE-2013-4384
nessus1prion1drupal1cvelist1nvd1