6 Medium
AI Score
Confidence
High
0.007 Low
EPSS
Percentile
80.7%
Unspecified vulnerability in the Boost module before 4.7.x-1.0, and 5.x before 5.x-1.0, for Drupal allows remote attackers to create or overwrite arbitrary files, and conduct cross-site scripting attacks (XSS) via unspecified vectors.
drupal.org/node/180591
osvdb.org/45493
osvdb.org/45494
exchange.xforce.ibmcloud.com/vulnerabilities/36939