Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:0 a.m.9 views

CVE-2014-7869

Cross-site scripting XSS vulnerability in the configuration UI in the Context Form Alteration module 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the "administer contexts" permission to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.5AI score0.00946EPSS
Exploits0References1
NVD
NVD
added 2014/10/06 2:55 p.m.22 views

CVE-2014-7869

Cross-site scripting XSS vulnerability in the configuration UI in the Context Form Alteration module 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the "administer contexts" permission to inject arbitrary web script or HTML via unspecified vectors...

3.5CVSS5.3AI score0.00946EPSS
Exploits0References4
Cvelist
Cvelist
added 2014/10/06 2:0 p.m.22 views

CVE-2014-7869

Cross-site scripting XSS vulnerability in the configuration UI in the Context Form Alteration module 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the "administer contexts" permission to inject arbitrary web script or HTML via unspecified vectors...

5.3AI score0.00946EPSS
Exploits0References4
CVE
CVE
added 2014/10/06 2:0 p.m.52 views

CVE-2014-7869

The vulnerability CVE-2014-7869 affects the Drupal contributed module Context Form Alteration (7.x-1.x) prior to 7.x-1.2. The root cause is insufficient input sanitization in the module’s Configuration UI, allowing remote authenticated users with the administer contexts permission to inject arbit...

3.5CVSS5.4AI score0.00946EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder