Hierarchical Select Project Hierarchical Select 6.x 3.1 Drupal

This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor	Hierarchical Select Project	First view	2014-12-08
Product	Hierarchical Select	Last view	2014-12-08
Version	6.x-3.1	Type	Application
Update	*
Edition	*
Language	*
Sofware Edition	*
Target Software	drupal
Target Hardware	*
Other	*

CPE Product	cpe:2.3:a:hierarchical_select_project:hierarchical_select

Activity : Overall

Related : CVE

	Date	Alert	Description
3.5	2014-12-08	CVE-2014-9346	Multiple cross-site scripting (XSS) vulnerabilities in the Hierarchical Select module 6.x-3.x before 6.x-3.9 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or HTML via vectors related to the (1) taxonomy term title for instances with Save term lineage enabled or (2) entity type fields.

CWE : Common Weakness Enumeration

%	id	Name
100% (1)	CWE-79	Failure to Preserve Web Page Structure ('Cross-site Scripting')

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0185s

Facebook rss twitter linkedin mail