CVE-2014-8319
Published Oct 17, 2014
Last updated 7 years ago
Overview
- Description
- Cross-site scripting (XSS) vulnerability in the easy_social_admin_summary function in the Easy Social module 7.x-2.x before 7.x-2.11 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via a block title.
- Source
- cve@mitre.org
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 3.5
- Impact score
- 2.9
- Exploitability score
- 6.8
- Vector string
- AV:N/AC:M/Au:S/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:easy_social_project:easy_social:7.x-2.0:*:*:*:*:drupal:*:*",
"vulnerable": true,
"matchCriteriaId": "6DB2242A-4D58-4BA3-A316-FE5F8147126D"
},
{
"criteria": "cpe:2.3:a:easy_social_project:easy_social:7.x-2.1:*:*:*:*:drupal:*:*",
"vulnerable": true,
"matchCriteriaId": "08C814D4-1AF6-4E09-9B3A-4D1141787DF4"
},
{
"criteria": "cpe:2.3:a:easy_social_project:easy_social:7.x-2.2:*:*:*:*:drupal:*:*",
"vulnerable": true,
"matchCriteriaId": "95829FBF-E312-4B9F-9B9A-ABD9A20D9C49"
},
{
"criteria": "cpe:2.3:a:easy_social_project:easy_social:7.x-2.3:*:*:*:*:drupal:*:*",
"vulnerable": true,
"matchCriteriaId": "29E7E053-AD3B-4224-BB3D-B2849E1CAB53"
},
{
"criteria": "cpe:2.3:a:easy_social_project:easy_social:7.x-2.4:*:*:*:*:drupal:*:*",
"vulnerable": true,
"matchCriteriaId": "95A70581-B3B4-4EC5-98EC-4F094A1E5858"
},
{
"criteria": "cpe:2.3:a:easy_social_project:easy_social:7.x-2.5:*:*:*:*:drupal:*:*",
"vulnerable": true,
"matchCriteriaId": "EF067355-BBE3-459D-A7C3-23ADCE87F036"
},
{
"criteria": "cpe:2.3:a:easy_social_project:easy_social:7.x-2.6:*:*:*:*:drupal:*:*",
"vulnerable": true,
"matchCriteriaId": "C5A01692-C9FD-4B9F-BC1F-82F0A369D8DE"
},
{
"criteria": "cpe:2.3:a:easy_social_project:easy_social:7.x-2.7:*:*:*:*:drupal:*:*",
"vulnerable": true,
"matchCriteriaId": "D4830BA8-E4B8-48EA-8A81-1AE144EA8ADB"
},
{
"criteria": "cpe:2.3:a:easy_social_project:easy_social:7.x-2.8:*:*:*:*:drupal:*:*",
"vulnerable": true,
"matchCriteriaId": "33A79701-9AF8-4A25-9811-DCB489F0F4CE"
},
{
"criteria": "cpe:2.3:a:easy_social_project:easy_social:7.x-2.9:*:*:*:*:drupal:*:*",
"vulnerable": true,
"matchCriteriaId": "0A352BF9-240B-4549-9CB2-17C3E7B72587"
},
{
"criteria": "cpe:2.3:a:easy_social_project:easy_social:7.x-2.10:*:*:*:*:drupal:*:*",
"vulnerable": true,
"matchCriteriaId": "6D17FCF0-6F18-40DA-81D5-D1E861BE48C1"
}
],
"operator": "OR"
}
]
}
]