Boxes
1 CVEs
product
Monthly
Cross-site scripting (XSS) vulnerability in the Boxes module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with administer or edit boxes permissions to inject arbitrary web. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.
XSS
Boxes
NVD
CVSS 2.0
2.1
EPSS
0.2%
EPSS 0%
CVSS 2.1
LOW
PATCH
Monitor
Cross-site scripting (XSS) vulnerability in the Boxes module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with administer or edit boxes permissions to inject arbitrary web. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.
XSS
Boxes
NVD