CVE-2012-2339
Published May 21, 2012
Last updated 7 years ago
Overview
- Description
- Cross-site scripting (XSS) vulnerability in the Glossary module 6.x-1.x before 6.x-1.8 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "taxonomy information."
- Source
- secalert@redhat.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:nancy_wichmann:glossary:6.x-1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "56B16025-76B3-4C4A-9725-5CB065C3979C"
},
{
"criteria": "cpe:2.3:a:nancy_wichmann:glossary:6.x-1.0:beta1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3CDFE4B8-1364-4E0E-BA7D-76ECB2BEB969"
},
{
"criteria": "cpe:2.3:a:nancy_wichmann:glossary:6.x-1.0:beta2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "347051A6-E5FA-4ECB-A13D-78CCF432FA38"
},
{
"criteria": "cpe:2.3:a:nancy_wichmann:glossary:6.x-1.0:beta3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5C28312B-6D79-49B5-8640-151E976F377B"
},
{
"criteria": "cpe:2.3:a:nancy_wichmann:glossary:6.x-1.0:beta4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A463E6E4-53D7-4094-9F4B-E4526D396416"
},
{
"criteria": "cpe:2.3:a:nancy_wichmann:glossary:6.x-1.0:beta5:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "13CD5610-A505-4FB1-9539-CD670A967839"
},
{
"criteria": "cpe:2.3:a:nancy_wichmann:glossary:6.x-1.0:dev:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "50A94A32-2A90-4BF2-9C20-66CCAEC2FA25"
},
{
"criteria": "cpe:2.3:a:nancy_wichmann:glossary:6.x-1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C0772776-EB09-4154-AAA6-5AFECBA6F547"
},
{
"criteria": "cpe:2.3:a:nancy_wichmann:glossary:6.x-1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "21EC2E7B-EF9C-461B-A091-9A4582BE71EA"
},
{
"criteria": "cpe:2.3:a:nancy_wichmann:glossary:6.x-1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D96D94A4-C3A6-49D3-B27C-D4206C5DE3A5"
},
{
"criteria": "cpe:2.3:a:nancy_wichmann:glossary:6.x-1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0175C221-4391-4F54-8712-BA1B76F992BA"
},
{
"criteria": "cpe:2.3:a:nancy_wichmann:glossary:6.x-1.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0195C8F3-51AB-4421-AC6B-ACF2A0EBB00A"
},
{
"criteria": "cpe:2.3:a:nancy_wichmann:glossary:6.x-1.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2943D398-0EA9-4AD2-8A9C-070DB41C59EB"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "799CA80B-F3FA-4183-A791-2071A7DA1E54"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]