Back to search
CVE-2012-4492
Published: Oct 31, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
Multiple cross-site scripting (XSS) vulnerabilities in the Shorten URLs module 6.x-1.x before 6.x-1.13 and 7.x-1.x before 7.x-1.2 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors to the (1) report or (2) Custom Services List page.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20121004 CVE Request for Drupal Contributed Modules
mailing-list
x_refsource_MLIST
https://drupal.org/node/1719310
x_refsource_CONFIRM
http://drupal.org/node/1719392
x_refsource_MISC
https://drupal.org/node/1719306
x_refsource_CONFIRM
54911
vdb-entry
x_refsource_BID
[oss-security] 20121007 Re: CVE Request for Drupal Contributed Modules
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now