Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2015-3414

Malware in sbrugna...

3.5CVSS6.4AI score0.00965EPSS
Exploits0References6
CNVD
CNVD
added 2015/04/23 12:0 a.m.5 views

Drupal Taxonews Module Cross-Site Scripting Vulnerability

Drupal is a free, open-source content management system developed in PHP and maintained by the Drupal community.Taxonews is one of the modules that generates blocks containing titles for nodes in the taxonomy vocabulary by matching conditions. A cross-site scripting vulnerability exists in the...

3.5CVSS6AI score0.00965EPSS
Exploits0References1
NVD
NVD
added 2015/04/21 4:59 p.m.13 views

CVE-2015-3369

Cross-site scripting XSS vulnerability in the Taxonews module before 6.x-1.2 and 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTML via a term name in a block...

3.5CVSS5.3AI score0.00965EPSS
Exploits0References5
Prion
Prion
added 2015/04/21 4:59 p.m.16 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Taxonews module before 6.x-1.2 and 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTML via a term name in a block...

3.5CVSS5.7AI score0.00965EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2015/04/21 4:0 p.m.24 views

CVE-2015-3369

Cross-site scripting XSS vulnerability in the Taxonews module before 6.x-1.2 and 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTML via a term name in a block...

5.3AI score0.00965EPSS
Exploits0References5
CVE
CVE
added 2015/04/21 4:0 p.m.45 views

CVE-2015-3369

The CVE-2015-3369 vulnerability affects the Drupal Taxonews module (versions < 6.x-1.2 and

3.5CVSS5.4AI score0.00965EPSS
Exploits0References5Affected Software1
Drupal
Drupal
added 2015/01/21 12:0 a.m.23 views

SA-CONTRIB-2015-026 - Taxonews - Cross Site Scripting (XSS)

This module enables you to create blocks of nodes carrying a given taxonomy term. The module doesn't sufficiently escape term names in the blocks it builds leading to a Cross Site Scripting XSS vulnerability. This vulnerability is mitigated by the fact that an attacker must have a role with the...

3.5CVSS5.5AI score0.00965EPSS
Exploits0References9
Rows per page
Query Builder