Lucene search
PRIOn knowledge basePRION:CVE-2014-5456HistoryAug 25, 2014 - 4:55 p.m.
Cross site scripting
2014-08-2516:55:00
PRIOn knowledge base
www.prio-n.com
2
Cross-site scripting (XSS) vulnerability in the Social Stats module before 7.x-1.5 for Drupal allows remote authenticated users with the “[Content Type]: Create new content” permission to inject arbitrary web script or HTML via vectors related to the configuration.
| CPE | Name | Operator | Version |
|---|---|---|---|
| social_stats | eq | 7.120.10 | |
| social_stats | eq | 7.120.11 | |
| social_stats | eq | <= 7.x-1.4 | |
| social_stats | eq | 7.x-1.x dev | |
| social_stats | eq | 7.120.12 | |
| social_stats | eq | 7.120.13 |
Related
cve
cve
CVE-2014-5456
2014-08-25 16:55:05
cvelist
cvelist
CVE-2014-5456
2014-08-25 16:00:00
nvd
nvd
CVE-2014-5456
2014-08-25 16:55:05
drupal
drupal
SA-CONTRIB-2014-080 - Social Stats - Cross Site Scripting (XSS)
2014-08-20 00:00:00