CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site scripting XSS vulnerability in the Rules Link module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "administer rules links" permission to inject arbitrary web script or HTML via unspecified vectors, which are not properly handled in the 1 question and 2...

2.1CVSS5.5AI score0.00209EPSS

Exploits0References1

Positive Technologies•added 2024/12/27 12:0 a.m.•1 views

PT-2024-36822 · Linkace · Linkace

Name of the Vulnerable Software and Affected Versions: LinkAce versions prior to 1.15.6 Description: A reflected cross-site scripting XSS issue exists in the "URL" field of the "Edit Link" module, where user input is not properly sanitized or encoded before being reflected in the HTML response...

4.6CVSS6.2AI score0.01265EPSS

Exploits1References8

CNNVD•added 2023/07/21 12:0 a.m.•1 views

Pimcore 跨站脚本漏洞

Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates Web content management, e-commerce frameworks and product information management applications. A cross-site scripting vulnerability exists in...

6.1CVSS5.7AI score0.1097EPSS

Exploits1References4

Tenable Nessus•added 2022/12/22 12:0 a.m.•9 views

Fedora 35 : drupal7-link (2022-74fe01686a)

The remote Fedora 35 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-74fe01686a advisory. - https://www.drupal.org/project/link/releases/7.x-1.11 - SA-CONTRIB-2022-034 - https://www.drupal.org/project/link/releases/7.x-1.10 -...

5.6AI score

Exploits0References1

Fedora•added 2022/11/24 1:35 a.m.•13 views

[SECURITY] Fedora 35 Update: drupal7-link-1.11-1.fc35

The link module can be count to the top 50 modules in Drupal installations and provides a standard custom content field for links. With this module links can be added easily to any content types and profiles and include advanced validating and different ways of storing internal or external links...

7.1AI score

Exploits0

Fedora•added 2022/11/24 1:33 a.m.•12 views

[SECURITY] Fedora 36 Update: drupal7-link-1.11-1.fc36

7.1AI score

Exploits0

Fedora•added 2022/11/24 1:27 a.m.•11 views

[SECURITY] Fedora 37 Update: drupal7-link-1.11-1.fc37

7.1AI score

Exploits0

OpenVAS•added 2022/11/24 12:0 a.m.•5 views

Fedora: Security Advisory for drupal7-link (FEDORA-2022-d209710a36)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score

Exploits0References2

CNVD•added 2022/06/27 12:0 a.m.•24 views

OneBlog Logo Parameter Server-Side Request Forgery Vulnerability

OneBlog is a beautiful and powerful Java blog. OneBlog v2.3.4 version exists server-side request forgery vulnerability, the vulnerability stems from the Link module under the Logo parameter fails to correctly validate the user input, an attacker can use the vulnerability to probe the server...

4.3CVSS4.6AI score0.00131EPSS

Exploits1References1