Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
DrupalCustom Search Module

2 matches found

CVE
CVEadded 2014/10/06 2:0 p.m.46 views

CVE-2014-7870

CVE-2014-7870 is a Drupal XSS vulnerability in the Custom Search module. Affected: Custom Search 6.x-1.x < 6.x-1.12 and 7.x-1.x

3.5CVSS5.5AI score0.00946EPSS
Web
CVE
CVEadded 2014/10/13 6:0 p.m.46 views

CVE-2014-8745

The CVE-2014-8745 issue affects Drupal via the contributed Custom Search module (versions 6.x-1.x before 6.x-1.13 and 7.x-1.x before 7.x-1.15). The root cause is an unsanitized taxonomy vocabulary label displayed by the module, enabling Cross-Site Scripting (XSS). Exploitation requires remote aut...

3.5CVSS5.4AI score0.01046EPSS