Skip to main content
CVE-2014-8068 MEDIUM This Month

Adobe Digital Editions (DE) 4 does not use encryption for transmission of data to adelogs.adobe.com, which allows remote attackers to obtain sensitive information by sniffing the network, as. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Adobe Information Disclosure Digital Editions
NVD
CVSS 2.0
5.0
EPSS
0.4%
CVE-2014-8079 MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the MAYO theme 7.x-1.x before 7.x-1.3 for Drupal allows remote authenticated users with the "administer themes" permission to inject arbitrary web script. Rated medium severity (CVSS 4.0), this vulnerability is remotely exploitable, low attack complexity.

XSS Mayo
NVD
CVSS 2.0
4.0
EPSS
0.3%
CVE-2014-8077 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the NewsFlash theme 6.x-1.x before 6.x-1.7 and 7.x-1.x before 7.x-2.5 for Drupal allows remote authenticated users with the "administer themes" permission. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Newsflash
NVD
CVSS 2.0
3.5
EPSS
0.3%
CVE-2014-8078 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 6.x-1.x before 6.x-1.19, 7.x-1.x before 7.x-1.3, and 7.x-2.x before 7.x-2.0 for Drupal allows. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Print
NVD
CVSS 2.0
3.5
EPSS
0.3%
CVE-2014-8076 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Professional theme 7.x before 7.x-2.04 for Drupal allows remote authenticated users with the "administer themes" permission to inject arbitrary web. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Professional Theme
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2014-8075 LOW Monitor

Cross-site scripting (XSS) vulnerability in the Tribune module 6.x-1.x and 7.x-3.x for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via a. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.

XSS Tribune
NVD
CVSS 2.0
3.5
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy