Click2sell : Security Vulnerabilities, CVEs, CVSS score >= 4
Cross-site scripting (XSS) vulnerability in the Click2Sell Suite module 6.x-1.x for Drupal allows remote attackers to inject arbitrary web script or HTML via a confirmation form.
Max CVSS
4.3
EPSS Score
0.25%
Published
2013-09-25
Updated
2017-08-29
Cross-site request forgery (CSRF) vulnerability in the Click2Sell Suite module 6.x-1.x for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete database information via vectors involving the Drupal Form API.
Max CVSS
6.8
EPSS Score
0.21%
Published
2013-09-25
Updated
2017-08-29
2 vulnerabilities found