Skip to main content

Cms Updater

2 CVEs product

Monthly

CVE-2015-7307 MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the CMS Updater module 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

XSS Cms Updater
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2015-7306 MEDIUM PATCH This Month

The CMS Updater module 7.x-1.x before 7.x-1.3 for Drupal does not properly check access permissions, which allows remote authenticated users to access and change settings by leveraging the "access. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable.

Authentication Bypass Cms Updater
NVD
CVSS 2.0
4.9
EPSS
0.3%
EPSS 0% CVSS 4.3
MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the CMS Updater module 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

XSS Cms Updater
NVD
EPSS 0% CVSS 4.9
MEDIUM PATCH This Month

The CMS Updater module 7.x-1.x before 7.x-1.3 for Drupal does not properly check access permissions, which allows remote authenticated users to access and change settings by leveraging the "access. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable.

Authentication Bypass Cms Updater
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy