Skip to main content

Om Maximenu

2 CVEs product

Monthly

CVE-2012-6065 MEDIUM PATCH This Month

The OM Maximenu module 6.x-1.43 and earlier for Drupal, when the "Title has PHP" option is enabled, allows remote authenticated users with the "Administer OM Maximenu" permission to execute arbitrary. Rated medium severity (CVSS 4.6), this vulnerability is remotely exploitable.

PHP RCE Om Maximenu
NVD
CVSS 2.0
4.6
EPSS
0.4%
CVE-2012-5553 LOW PATCH Monitor

Multiple cross-site scripting (XSS) vulnerabilities in the OM Maximenu module 6.x-1.x before 6.x-1.44 and 7.x-1.x before 7.x-1.44 for Drupal allow remote authenticated users with the "administer OM. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Om Maximenu
NVD
CVSS 2.0
2.1
EPSS
0.3%
EPSS 0% CVSS 4.6
MEDIUM PATCH This Month

The OM Maximenu module 6.x-1.43 and earlier for Drupal, when the "Title has PHP" option is enabled, allows remote authenticated users with the "Administer OM Maximenu" permission to execute arbitrary. Rated medium severity (CVSS 4.6), this vulnerability is remotely exploitable.

PHP RCE Om Maximenu
NVD
EPSS 0% CVSS 2.1
LOW PATCH Monitor

Multiple cross-site scripting (XSS) vulnerabilities in the OM Maximenu module 6.x-1.x before 6.x-1.44 and 7.x-1.x before 7.x-1.44 for Drupal allow remote authenticated users with the "administer OM. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.

XSS Om Maximenu
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy