Lucene search
PRIOn knowledge basePRION:CVE-2014-9740HistoryJul 06, 2015 - 3:59 p.m.
Cross site scripting
2015-07-0615:59:00
PRIOn knowledge base
www.prio-n.com
2
Cross-site scripting (XSS) vulnerability in the Rules Link module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the “administer rules links” permission to inject arbitrary web script or HTML via unspecified vectors, which are not properly handled in the (1) question and (2) description strings in a confirmation form for a triggering Rules link.
| CPE | Name | Operator | Version |
|---|---|---|---|
| rules_link | eq | 7.x-1.0 beta3 | |
| rules_link | eq | 7.x-1.0 beta4 | |
| rules_link | eq | 7.x-1.0 beta2 | |
| rules_link | eq | 7.x-1.0 beta1 | |
| rules_link | eq | 7.120.10 | |
| rules_link | eq | 7.x-1.0 beta5 |
Related
cve
cve
CVE-2014-9740
2022-10-03 16:20:40
drupal
drupal
SA-CONTRIB-2014-083 - Rules Link - Cross Site Scripting (XSS)
2014-08-27 00:00:00
cvelist
cvelist
CVE-2014-9740
2022-10-03 16:20:40
nvd
nvd
CVE-2014-9740
2015-07-06 15:59:05