Creative
1 CVEs
product
Monthly
Cross-site scripting (XSS) vulnerability in the Creative Theme 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.
XSS
Creative
NVD
CVSS 2.0
2.1
EPSS
0.2%
EPSS 0%
CVSS 2.1
LOW
PATCH
Monitor
Cross-site scripting (XSS) vulnerability in the Creative Theme 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.
XSS
Creative
NVD