Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2013-4275

Cross-site scripting (XSS) vulnerability in the zen_breadcrumb function in template.php in the Zen theme 6.x-1.x, 7.x-3.x before 7.x-3.2, and 7.x-5.x before 7.x-5.4 for Drupal allows remote authenticated users with the "administer themes" permission to inject arbitrary web script or HTML via the breadcrumb separator field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.3%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
Products affected by CVE-2013-4275
  • Zen Project » Zen » Version: 6.x-1.0
    cpe:2.3:a:zen_project:zen:6.x-1.0
  • Zen Project » Zen » Version: 6.x-1.1
    cpe:2.3:a:zen_project:zen:6.x-1.1
  • Zen Project » Zen » Version: 6.x-1.2
    cpe:2.3:a:zen_project:zen:6.x-1.2
  • Zen Project » Zen » Version: 6.x-1.3
    cpe:2.3:a:zen_project:zen:6.x-1.3
  • Zen Project » Zen » Version: 7.x-3.0
    cpe:2.3:a:zen_project:zen:7.x-3.0
  • Zen Project » Zen » Version: 7.x-3.1
    cpe:2.3:a:zen_project:zen:7.x-3.1
  • Zen Project » Zen » Version: 7.x-5.0
    cpe:2.3:a:zen_project:zen:7.x-5.0
  • Zen Project » Zen » Version: 7.x-5.1
    cpe:2.3:a:zen_project:zen:7.x-5.1
  • Zen Project » Zen » Version: 7.x-5.2
    cpe:2.3:a:zen_project:zen:7.x-5.2
  • Zen Project » Zen » Version: 7.x-5.3
    cpe:2.3:a:zen_project:zen:7.x-5.3


Products
Pricing
Contact Us

Shodan ® - All rights reserved