Skip to main content
CVE-2013-0181 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in Views in the Search API (search_api) module 7.x-1.x before 7.x-1.4 for Drupal, when using certain backends and facets, allows remote attackers to inject. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable.

XSS Search Api
NVD
CVSS 2.0
2.6
EPSS
0.5%
CVE-2013-1783 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the 3 slide gallery in page--front.tpl.php in the Business theme before 7.x-1.8 for Drupal allows remote authenticated users with the administer themes. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

PHP XSS Business
NVD
CVSS 2.0
2.1
EPSS
0.4%
CVE-2013-1780 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Best Responsive Theme 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Best Responsive
NVD
CVSS 2.0
2.1
EPSS
0.4%
CVE-2013-1782 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Responsive Blog Theme 7.x-1.x before 7.x-1.6 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Responsive Blog
NVD
CVSS 2.0
2.1
EPSS
0.3%
CVE-2013-1887 LOW PATCH Monitor

Multiple cross-site scripting (XSS) vulnerabilities in the Views module 7.x-3.x before 7.x-3.6 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Views
NVD
CVSS 2.0
2.1
EPSS
0.3%
CVE-2013-2715 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the admin view in the Search API (search_api) module 7.x-1.x before 7.x-1.4 for Drupal allows remote authenticated users with certain permissions to inject. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Search Api
NVD
CVSS 2.0
2.1
EPSS
0.3%
CVE-2013-1786 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Company theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Company
NVD
CVSS 2.0
2.1
EPSS
0.2%
CVE-2013-1785 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Premium Responsive theme before 7.x-1.6 for Drupal allows remote authenticated users with the administer themes permission to. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Responsive
NVD
CVSS 2.0
2.1
EPSS
0.2%
CVE-2013-1784 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Clean Theme before 7.x-1.3 for Drupal allows remote authenticated users with the administer themes permission to inject. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Clean Theme
NVD
CVSS 2.0
2.1
EPSS
0.2%
CVE-2013-1781 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Professional theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Professional Theme
NVD
CVSS 2.0
2.1
EPSS
0.2%
CVE-2013-1787 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Simple Corporate theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Corporate
NVD
CVSS 2.0
2.1
EPSS
0.2%
CVE-2013-1779 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Fresh theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Fresh
NVD
CVSS 2.0
2.1
EPSS
0.2%
CVE-2013-1778 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Creative Theme 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Creative
NVD
CVSS 2.0
2.1
EPSS
0.2%
CVE-2013-0324 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Rendered links formatter in the Menu Reference module 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with the "Administer menus. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Menu Reference
NVD
CVSS 2.0
2.1
EPSS
0.2%
CVE-2013-0259 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Boxes module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with administer or edit boxes permissions to inject arbitrary web. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Boxes
NVD
CVSS 2.0
2.1
EPSS
0.2%
CVE-2013-0260 LOW Monitor

Unspecified vulnerability in the Drush Debian Packaging module for Drupal allows local users to obtain database credentials via unknown vectors. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Debian Information Disclosure Drush Debian Packaging
NVD
CVSS 2.0
2.1
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy