Skip to main content
CVE-2014-8745 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Custom Search module 6.x-1.x before 6.x-1.13 and 7.x-1.x before 7.x-1.15 for Drupal allows remote authenticated users with the "administer taxonomy". Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Custom Search Module
NVD
CVSS 2.0
3.5
EPSS
0.3%
CVE-2014-8744 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Nivo Slider module 7.x-2.x before 7.x-1.11 for Drupal allows remote authenticated users with the "administer nivo slider" permission to inject. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Nivo Slider
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2014-8748 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Google Doubleclick for Publishers (DFP) module 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the "administer dfp" permission. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Google Doubleclick For Publishers
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2014-8746 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Skeleton theme 7.x-1.2 through 7.x-1.3 before 7.x-1.4, for Drupal allows remote authenticated users with the "administer themes" permission to inject. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Skeleton Theme
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2014-8743 LOW PATCH Monitor

Multiple cross-site scripting (XSS) vulnerabilities in the Maestro module 7.x-1.x before 7.x-1.4 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Maestro
NVD
CVSS 2.0
3.5
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy