CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Drupal: >> Faq >> 6.x-1.5 Security Vulnerabilities

CVE-2012-1646

Multiple cross-site scripting (XSS) vulnerabilities in the FAQ module 6.x-1.x before 6.x-1.13 and 7.x-1.x-rc1 for Drupal allow remote authenticated users to inject arbitrary web script or HTML via the (1) title parameter in faq.admin.inc or (2) detailed_question parameter in faq.module.

CVSS Score

4.3

EPSS Score

0.007

Published

2012-09-25

Page 1

Vulnerabilities

Vulnerable Software

Drupal: >> Faq >> 6.x-1.5 Security Vulnerabilities

Products

Pricing

Contact Us