Tinybox
1 CVEs
product
Monthly
Cross-site scripting (XSS) vulnerability in the TinyBox (Simple Splash) module before 7.x-2.2 for Drupal allows remote authenticated users with the "administer tinybox" permission to inject arbitrary. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.
XSS
Tinybox
NVD
CVSS 2.0
2.1
EPSS
0.4%
EPSS 0%
CVSS 2.1
LOW
PATCH
Monitor
Cross-site scripting (XSS) vulnerability in the TinyBox (Simple Splash) module before 7.x-2.2 for Drupal allows remote authenticated users with the "administer tinybox" permission to inject arbitrary. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable.
XSS
Tinybox
NVD