CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-9362

Cross-site scripting (XSS) vulnerability in the path-based meta tag editing form in the Meta tags quick module 7.x-2.x before 7.x-2.8 for Drupal allows remote authenticated users with the "Edit path based meta tags" permission to inject arbitrary web script or HTML via vectors related to deleting a Path-based Metatag.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.9%

CVSS Severity

CVSS v2 Score 3.5

References

Products affected by CVE-2014-9362

Meta Tags Quick Project » Meta Tags Quick » Version: 7.x-2.0

cpe:2.3:a:meta_tags_quick_project:meta_tags_quick:7.x-2.0
Meta Tags Quick Project » Meta Tags Quick » Version: 7.x-2.1

cpe:2.3:a:meta_tags_quick_project:meta_tags_quick:7.x-2.1
Meta Tags Quick Project » Meta Tags Quick » Version: 7.x-2.2

cpe:2.3:a:meta_tags_quick_project:meta_tags_quick:7.x-2.2
Meta Tags Quick Project » Meta Tags Quick » Version: 7.x-2.3

cpe:2.3:a:meta_tags_quick_project:meta_tags_quick:7.x-2.3
Meta Tags Quick Project » Meta Tags Quick » Version: 7.x-2.4

cpe:2.3:a:meta_tags_quick_project:meta_tags_quick:7.x-2.4
Meta Tags Quick Project » Meta Tags Quick » Version: 7.x-2.5

cpe:2.3:a:meta_tags_quick_project:meta_tags_quick:7.x-2.5
Meta Tags Quick Project » Meta Tags Quick » Version: 7.x-2.6

cpe:2.3:a:meta_tags_quick_project:meta_tags_quick:7.x-2.6
Meta Tags Quick Project » Meta Tags Quick » Version: 7.x-2.7

cpe:2.3:a:meta_tags_quick_project:meta_tags_quick:7.x-2.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-9362

Products

Pricing

Contact Us