Lucene search
HistoryMay 20, 2010 - 5:30 p.m.
CVE-2010-1998
CVSS2
2.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:S/C:N/I:P/A:N
AI Score
5.4
Confidence
High
EPSS
0.001
Percentile
44.7%
Cross-site scripting (XSS) vulnerability in the CCK TableField module 6.x before 6.x-1.2 for Drupal allows remote authenticated users, with certain node creation or editing privileges, to inject arbitrary web script or HTML via table headers.
Affected configurations
Node
kevinhankenstablefieldMatch6.x-1.0
ORkevinhankenstablefieldMatch6.x-1.0beta1
ORkevinhankenstablefieldMatch6.x-1.0beta2
ORkevinhankenstablefieldMatch6.x-1.1
drupaldrupal
| Vendor | Product | Version | CPE |
|---|---|---|---|
| kevinhankens | tablefield | 6.x-1.0 | cpe:2.3:a:kevinhankens:tablefield:6.x-1.0:*:*:*:*:*:*:* |
| kevinhankens | tablefield | 6.x-1.0 | cpe:2.3:a:kevinhankens:tablefield:6.x-1.0:beta1:*:*:*:*:*:* |
| kevinhankens | tablefield | 6.x-1.0 | cpe:2.3:a:kevinhankens:tablefield:6.x-1.0:beta2:*:*:*:*:*:* |
| kevinhankens | tablefield | 6.x-1.1 | cpe:2.3:a:kevinhankens:tablefield:6.x-1.1:*:*:*:*:*:*:* |
| drupal | drupal | * | cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2010-1998
2010-05-20 17:30:01
cvelist
cvelist
CVE-2010-1998
2010-05-20 17:00:00
prion
prion
Cross site scripting
2010-05-20 17:30:00
CVSS2
2.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:S/C:N/I:P/A:N
AI Score
5.4
Confidence
High
EPSS
0.001
Percentile
44.7%
Related for NVD:CVE-2010-1998