Skip to main content

Privatemsg

1 CVEs product

Monthly

CVE-2012-4468 MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the Privatemsg module 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via a user name in a private message. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

XSS Privatemsg
NVD
CVSS 2.0
4.3
EPSS
0.3%
EPSS 0% CVSS 4.3
MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the Privatemsg module 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via a user name in a private message. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

XSS Privatemsg
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy