Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2015-1621
cve-2015-1621
cross-site scripting
xss
vulnerability
webform
prepopulate
block
module
drupal
nvd
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
36.6%
Cross-site scripting (XSS) vulnerability in the Webform prepopulate block module before 7.x-3.1 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Affected configurations
Node
webform_prepopulate_block_projectwebform_prepopulate_blockRange≤7.x-3.0drupal
Related
prion
prion
Cross site scripting
2015-02-17 15:59:00
nvd
nvd
CVE-2015-1621
2015-02-17 15:59:11
drupal
drupal
SA-CONTRIB-2015-040 - Webform prepopulate block - Cross Site Scripting (XSS)
2015-02-11 00:00:00
cvelist
cvelist
CVE-2015-1621
2022-10-03 16:15:50
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
36.6%
Related for CVE-2015-1621