Lucene search
Ubuntu.comUB:CVE-2014-5022HistoryJul 22, 2014 - 12:00 a.m.
CVE-2014-5022
2014-07-2200:00:00
ubuntu.com
ubuntu.com
12
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
45.2%
Cross-site scripting (XSS) vulnerability in the Ajax system in Drupal 7.x
before 7.29 allows remote attackers to inject arbitrary web script or HTML
via vectors involving forms with an Ajax-enabled textfield and a file
field.
Related
prion
prion
Cross site scripting
2014-07-22 14:55:00
debiancve
debiancve
CVE-2014-5022
2014-07-22 14:55:00
cve
cve
CVE-2014-5022
2014-07-22 14:55:00
nessus
nessus
Drupal 6.x < 6.32 / 7.x < 7.29 Multiple Vulnerabilities
2014-07-21 00:00:00
Debian DSA-2983-1 : drupal7 - security update
2014-07-21 00:00:00
Fedora 20 : drupal7-7.29-1.fc20 (2014-8485)
2014-07-29 00:00:00
openvas
openvas
Fedora Update for drupal7 FEDORA-2014-8485
2014-08-05 00:00:00
Fedora Update for drupal7 FEDORA-2014-8515
2014-08-05 00:00:00
Debian: Security Advisory (DSA-2983-1)
2014-07-19 00:00:00
drupal
drupal
SA-CORE-2014-003 - Drupal core - Multiple vulnerabilities
2014-07-16 00:00:00
mageia
mageia
Updated drupal packages fix security vulnerabilities
2014-08-07 21:01:33
securityvulns
securityvulns
[ MDVSA-2015:181 ] drupal
2015-05-12 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.001 Low
EPSS
Percentile
45.2%
Related for UB:CVE-2014-5022