Lucene search
Ubuntu.comUB:CVE-2009-2373HistoryJul 08, 2009 - 12:00 a.m.
CVE-2009-2373
2009-07-0800:00:00
ubuntu.com
ubuntu.com
7
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.002
Percentile
57.6%
Cross-site scripting (XSS) vulnerability in the Forum module in Drupal 6.x
before 6.13 allows remote attackers to inject arbitrary web script or HTML
via unspecified vectors.
Notes
| Author | Note |
|---|---|
| mdeslaur | SA-CORE-2009-007 |
Related
cvelist
cvelist
CVE-2009-2373
2009-07-08 15:00:00
prion
prion
Cross site scripting
2009-07-08 15:30:00
nvd
nvd
CVE-2009-2373
2009-07-08 15:30:01
cve
cve
CVE-2009-2373
2009-07-08 15:30:01
openvas
openvas
Drupal XSS and Code Injection Vulnerability
2009-07-15 00:00:00
Debian: Security Advisory (DSA-1930-1)
2009-11-11 00:00:00
FreeBSD Ports: drupal5
2009-07-15 00:00:00
debian
debian
[SECURITY] [DSA 1930-1] New drupal6 packages fix several vulnerabilities
2009-11-07 00:46:57
nessus
nessus
Debian DSA-1930-1 : drupal6 - several vulnerabilities
2010-02-24 00:00:00
osv
osv
drupal6 - several vulnerabilities
2009-11-07 00:00:00
freebsd
freebsd
drupal -- multiple vulnerabilities
2009-07-01 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.002
Percentile
57.6%
Related for UB:CVE-2009-2373