CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-4383

Cross-site scripting (XSS) vulnerability in the jQuery Countdown module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "access administration pages" permission to inject arbitrary web script or HTML via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.5%

CVSS Severity

CVSS v2 Score 2.1

References

http://www.securityfocus.com/bid/62340
https://drupal.org/node/2087089
https://drupal.org/node/2087095
http://www.securityfocus.com/bid/62340
https://drupal.org/node/2087089
https://drupal.org/node/2087095

Products affected by CVE-2013-4383

Dennis Bruecke » Jquery Countdown » Version: 7.x-1.0

cpe:2.3:a:dennis_bruecke:jquery_countdown:7.x-1.0
Drupal » Drupal » Version: N/A

cpe:2.3:a:drupal:drupal:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4383

Products

Pricing

Contact Us