CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-5514

Cross-site scripting (XSS) vulnerability in the Migrate module 7.x-2.x before 7.x-2.8 for Drupal, when the migrate_ui submodule is enabled, allows user-assisted remote attackers to inject arbitrary web script or HTML via a destination field label.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.5%

CVSS Severity

CVSS v2 Score 2.6

References

Products affected by CVE-2015-5514

Migrate Project » Migrate » Version: 7.x-2.0

cpe:2.3:a:migrate_project:migrate:7.x-2.0
Migrate Project » Migrate » Version: 7.x-2.1

cpe:2.3:a:migrate_project:migrate:7.x-2.1
Migrate Project » Migrate » Version: 7.x-2.2

cpe:2.3:a:migrate_project:migrate:7.x-2.2
Migrate Project » Migrate » Version: 7.x-2.3

cpe:2.3:a:migrate_project:migrate:7.x-2.3
Migrate Project » Migrate » Version: 7.x-2.4

cpe:2.3:a:migrate_project:migrate:7.x-2.4
Migrate Project » Migrate » Version: 7.x-2.5

cpe:2.3:a:migrate_project:migrate:7.x-2.5
Migrate Project » Migrate » Version: 7.x-2.6

cpe:2.3:a:migrate_project:migrate:7.x-2.6
Migrate Project » Migrate » Version: 7.x-2.7

cpe:2.3:a:migrate_project:migrate:7.x-2.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-5514

Products

Pricing

Contact Us