QwikSec

Security Database

CVE

CWE

Training

CVE-2012-1561

Published: Apr 8, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the "checkbox and radio button functionalities."

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://drupal.org/node/1432320

x_refsource_CONFIRM

http://drupal.org/node/1432318

x_refsource_CONFIRM

[oss-security] 20120319 Re: CVE-request: Drupal Finder SA-CONTRIB-2012-017

mailing-list

x_refsource_MLIST

vdb-entry

x_refsource_OSVDB

[oss-security] 20120316 CVE-request: Drupal Finder SA-CONTRIB-2012-017

mailing-list

x_refsource_MLIST

http://www.madirish.net/content/drupal-finder-6x-19-xss-and-remote-code-execution-vulnerabilities

x_refsource_MISC

[oss-security] 20120406 CVE's for Drupal Contrib 2012 001 through 057 (67 new CVE assignments)

mailing-list

x_refsource_MLIST

third-party-advisory

x_refsource_SECUNIA

http://drupalcode.org/project/finder.git/commit/58443aa

x_refsource_CONFIRM

http://drupalcode.org/project/finder.git/commit/13e2d0c

x_refsource_CONFIRM

https://drupal.org/node/1432970

x_refsource_MISC

drupal-finder-unspecified-xss(73110)

vdb-entry

x_refsource_XF

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.