CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-8319

Cross-site scripting (XSS) vulnerability in the easy_social_admin_summary function in the Easy Social module 7.x-2.x before 7.x-2.11 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via a block title.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.5%

CVSS Severity

CVSS v2 Score 3.5

References

Products affected by CVE-2014-8319

Easy Social Project » Easy Social » Version: 7.x-2.0

cpe:2.3:a:easy_social_project:easy_social:7.x-2.0
Easy Social Project » Easy Social » Version: 7.x-2.1

cpe:2.3:a:easy_social_project:easy_social:7.x-2.1
Easy Social Project » Easy Social » Version: 7.x-2.10

cpe:2.3:a:easy_social_project:easy_social:7.x-2.10
Easy Social Project » Easy Social » Version: 7.x-2.2

cpe:2.3:a:easy_social_project:easy_social:7.x-2.2
Easy Social Project » Easy Social » Version: 7.x-2.3

cpe:2.3:a:easy_social_project:easy_social:7.x-2.3
Easy Social Project » Easy Social » Version: 7.x-2.4

cpe:2.3:a:easy_social_project:easy_social:7.x-2.4
Easy Social Project » Easy Social » Version: 7.x-2.5

cpe:2.3:a:easy_social_project:easy_social:7.x-2.5
Easy Social Project » Easy Social » Version: 7.x-2.6

cpe:2.3:a:easy_social_project:easy_social:7.x-2.6
Easy Social Project » Easy Social » Version: 7.x-2.7

cpe:2.3:a:easy_social_project:easy_social:7.x-2.7
Easy Social Project » Easy Social » Version: 7.x-2.8

cpe:2.3:a:easy_social_project:easy_social:7.x-2.8
Easy Social Project » Easy Social » Version: 7.x-2.9

cpe:2.3:a:easy_social_project:easy_social:7.x-2.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-8319

Products

Pricing

Contact Us