CVE

Id
55302  
CVE No.
CVE-2012-2059  
Status
Candidate  
Description
Cross-site scripting (XSS) vulnerability in the ticketyboo News Ticker module for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.  
Phase
Assigned (20120404)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
577676 55302 CVE-2012-2059 MLIST:[oss-security] 20120406 CVE"s for Drupal Contrib 2012 001 through 057 (67 new CVE assignments)  View
577677 55302 CVE-2012-2059 URL:http://www.openwall.com/lists/oss-security/2012/04/07/1  View
577678 55302 CVE-2012-2059 MISC:http://drupal.org/node/1482126  View
577679 55302 CVE-2012-2059 BID:52502  View
577680 55302 CVE-2012-2059 URL:http://www.securityfocus.com/bid/52502  View
577681 55302 CVE-2012-2059 XF:ticketyboo-drupal-xss(74056)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
28374 JVNDB-2012-004081 Drupal 用 Views Language Switcher モジュールにおけるクロスサイトスクリプティングの脆弱性 Drupal 用 Views Language Switcher モジュールの theme/views_lang_switch.theme.inc には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2012-2064 55302 4.3 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004081.html  View