Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2 matches found

CVE
CVEadded 2012/11/30 10:0 p.m.79 views

CVE-2012-4474

CVE-2012-4474 : The Drupal contributed module Colorbox Node (7.x-2.x) is vulnerable to cross-site scripting (XSS) in versions prior to 7.x-2.2. The issue arises because the module did not adequately validate certain URL parameters before printing them to the browser, allowing an attacker to injec...

4.3CVSS5.9AI score0.01161EPSS
Exploits0References4Affected Software1
Drupal
Drupaladded 2012/07/11 12:0 a.m.25 views

SA-CONTRIB-2012-110 - Colorbox Node - Cross Site Scripting (XSS)

Colorbox Node gives the user the ability to display ANY page inside a colorbox modal without the header and footer. The module accepts some settings from URL parameters and didn't sufficiently validate them before printing them to the browser, allowing malicious users to inject script code into t...

4.3CVSS6.5AI score0.01161EPSS
Exploits0References10
Rows per page
Query Builder