Tournament
1 CVEs
product
Monthly
Multiple cross-site scripting (XSS) vulnerabilities in the Tournament module 7.x-1.x before 7.x-1.2 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.
XSS
Tournament
NVD
CVSS 2.0
4.3
EPSS
0.2%
EPSS 0%
CVSS 4.3
MEDIUM
PATCH
This Month
Multiple cross-site scripting (XSS) vulnerabilities in the Tournament module 7.x-1.x before 7.x-1.2 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.
XSS
Tournament
NVD