CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-5559

Cross-site scripting (XSS) vulnerability in the page manager node view task in the Chaos tool suite (ctools) module 6.x-1.x before 6.x-1.10 for Drupal allows remote authenticated users with permissions to submit or edit nodes to inject arbitrary web script or HTML via the page title.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.6%

CVSS Severity

CVSS v2 Score 2.6

References

Products affected by CVE-2012-5559

Chaos Tool Suite Project » Ctools » Version: 6.x-1.0

cpe:2.3:a:chaos_tool_suite_project:ctools:6.x-1.0
Chaos Tool Suite Project » Ctools » Version: 6.x-1.1

cpe:2.3:a:chaos_tool_suite_project:ctools:6.x-1.1
Chaos Tool Suite Project » Ctools » Version: 6.x-1.2

cpe:2.3:a:chaos_tool_suite_project:ctools:6.x-1.2
Chaos Tool Suite Project » Ctools » Version: 6.x-1.3

cpe:2.3:a:chaos_tool_suite_project:ctools:6.x-1.3
Chaos Tool Suite Project » Ctools » Version: 6.x-1.4

cpe:2.3:a:chaos_tool_suite_project:ctools:6.x-1.4
Chaos Tool Suite Project » Ctools » Version: 6.x-1.5

cpe:2.3:a:chaos_tool_suite_project:ctools:6.x-1.5
Chaos Tool Suite Project » Ctools » Version: 6.x-1.6

cpe:2.3:a:chaos_tool_suite_project:ctools:6.x-1.6
Chaos Tool Suite Project » Ctools » Version: 6.x-1.7

cpe:2.3:a:chaos_tool_suite_project:ctools:6.x-1.7
Chaos Tool Suite Project » Ctools » Version: 6.x-1.8

cpe:2.3:a:chaos_tool_suite_project:ctools:6.x-1.8
Chaos Tool Suite Project » Ctools » Version: 6.x-1.9

cpe:2.3:a:chaos_tool_suite_project:ctools:6.x-1.9
Chaos Tool Suite Project » Ctools » Version: 6.x-1.x

cpe:2.3:a:chaos_tool_suite_project:ctools:6.x-1.x

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-5559

Products

Pricing

Contact Us