Sms Framework
1 CVEs
product
Monthly
Cross-site scripting (XSS) vulnerability in the SMS Framework module 6.x-1.x before 6.x-1.1 for Drupal, when the "Send to phone" submodule is enabled, allows remote attackers to inject arbitrary web. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable.
XSS
Sms Framework
NVD
CVSS 2.0
2.6
EPSS
0.3%
EPSS 0%
CVSS 2.6
LOW
PATCH
Monitor
Cross-site scripting (XSS) vulnerability in the SMS Framework module 6.x-1.x before 6.x-1.1 for Drupal, when the "Send to phone" submodule is enabled, allows remote attackers to inject arbitrary web. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable.
XSS
Sms Framework
NVD