Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:21 a.m.11 views

CVE-2015-6808

Cross-site scripting XSS vulnerability in the Spotlight module 7.x-1.x before 7.x-1.5 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via a node title...

3.5CVSS5.5AI score0.00774EPSS
Exploits0References1
NVD
NVD
added 2015/09/04 3:59 p.m.23 views

CVE-2015-6808

Cross-site scripting XSS vulnerability in the Spotlight module 7.x-1.x before 7.x-1.5 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via a node title...

3.5CVSS5.3AI score0.00774EPSS
Exploits0References2
CVE
CVE
added 2015/09/04 3:0 p.m.41 views

CVE-2015-6808

The CVE-2015-6808 issue affects the Drupal Spotlight module for 7.x-1.x, specifically versions prior to 7.x-1.5. It is a Cross-site Scripting (XSS) vulnerability that allows remote authenticated users with certain permissions to inject arbitrary script or HTML via a node title. The root cause rel...

3.5CVSS5.4AI score0.00774EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/09/04 3:0 p.m.23 views

CVE-2015-6808

Cross-site scripting XSS vulnerability in the Spotlight module 7.x-1.x before 7.x-1.5 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via a node title...

5.3AI score0.00774EPSS
Exploits0References2
Drupal
Drupal
added 2015/09/01 12:0 a.m.26 views

Spotlight - Moderately Critical - Cross Site Scripting - SA-CONTRIB-2015-142

The Spotlight module provides a tool that mimics Mac OS X Spotlight functionality. It provides faster access to content, paths and uploaded files. The module doesn't sufficiently sanitize node titles when displayed in results. This vulnerability is mitigated by the fact that an attacker must have...

3.5CVSS6.3AI score0.00774EPSS
Exploits0References9
Rows per page
Query Builder