CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Social Stats Project: >> Social Stats >> 7.x-1.x Security Vulnerabilities

CVE-2014-5456

Cross-site scripting (XSS) vulnerability in the Social Stats module before 7.x-1.5 for Drupal allows remote authenticated users with the "[Content Type]: Create new content" permission to inject arbitrary web script or HTML via vectors related to the configuration.

CVSS Score

2.1

EPSS Score

0.002

Published

2014-08-25

Page 1

Vulnerabilities

Vulnerable Software

Social Stats Project: >> Social Stats >> 7.x-1.x Security Vulnerabilities

Products

Pricing

Contact Us