This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Fourkitchens First view 2010-03-25
Product Recent Comments Last view 2010-03-25
Version Type Application
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:fourkitchens:recent_comments:5.x-1.0:*:*:*:*:*:*:* 1
cpe:2.3:a:fourkitchens:recent_comments:6.x-1.0:*:*:*:*:*:*:* 1
cpe:2.3:a:fourkitchens:recent_comments:5.x-1.2:*:*:*:*:*:*:* 1
cpe:2.3:a:fourkitchens:recent_comments:5.x-1.1:*:*:*:*:*:*:* 1
cpe:2.3:a:fourkitchens:recent_comments:6.x-1.1:*:*:*:*:*:*:* 1

Related : CVE

  Date Alert Description
3.5 2010-03-25 CVE-2010-1107

Cross-site scripting (XSS) vulnerability in the Recent Comments module 5.x through 5.x-1.2 and 6.x through 6.x-1.0 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a "custom block title interface."

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-79 Failure to Preserve Web Page Structure ('Cross-site Scripting')

Open Source Vulnerability Database (OSVDB)

id Description
61872 Recent Comments Module for Drupal Custom Block Title Interface XSS