NVD

Id
43524  
Name
CVE-2012-1652  
Description
Cross-site scripting (XSS) vulnerability in the Hierarchical Select module 6.x-3.x before 6.x-3.8 for Drupal allows remote authenticated users with administer taxonomy permissions to inject arbitrary web script or HTML via unspecified vectors related to "the vocabulary"s help text."  
Reject
 
CVSS Version
2  
CVSS Score
2.1  
Severity
Low  
CVSS Base Score
2.1  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:N/AC:H/Au:S/C:N/I:P/A:N)  
Pub Date
2017-01-19  
Published
2012-09-19  
Modified Date
2012-09-20  
Seq
2012-1652  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
218754 43524 CVE-2012-1652 http://drupal.org/node/1461318  View
218755 43524 CVE-2012-1652 http://drupal.org/node/1461724  View
218756 43524 CVE-2012-1652 http://drupalcode.org/project/hierarchical_select.git/commit/be32dceb17d25553e474c295a8c3db69eab95cee  View
218757 43524 CVE-2012-1652 [oss-security] 20120406 CVE"s for Drupal Contrib 2012 001 through 057 (67 new CVE assignments)  View
218758 43524 CVE-2012-1652 52228  View
218759 43524 CVE-2012-1652 hierarchicalselect-textvocabularies-xss(73611)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
28785 JVNDB-2012-004492 Drupal 用 Hierarchical Select モジュールにおけるクロスサイトスクリプティングの脆弱性 Drupal 用 Hierarchical Select モジュールには、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2012-1652 54890 CVE-2012-1652 43524 2.1 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004492.html 2012-02-29 2012-09-21 View