CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Drupal: >> Commons >> 7.x-3.4 Security Vulnerabilities

CVE-2014-8747

Cross-site scripting (XSS) vulnerability in the Drupal Commons module 7.x-3.x before 7.x-3.9 for Drupal allows remote attackers to inject arbitrary web script or HTML via vectors related to content creation and activity stream messages.

CVSS Score

4.3

EPSS Score

0.005

Published

2014-10-13

Page 1

Vulnerabilities

Vulnerable Software

Drupal: >> Commons >> 7.x-3.4 Security Vulnerabilities

Products

Pricing

Contact Us