Cloudwords : Security vulnerabilities, CVEs

Copy

CVE-2015-3348

Cross-site scripting (XSS) vulnerability in the Cloudwords for Multilingual Drupal module before 7.x-2.3 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a node title.

Max CVSS

3.5

EPSS Score

0.10%

Published

2015-04-21

Updated

2016-12-06

CVE-2015-3347

Cross-site request forgery (CSRF) vulnerability in the Cloudwords for Multilingual Drupal module before 7.x-2.3 for Drupal allows remote attackers to hijack the authentication of unspecified victims via an unknown menu callback.

Max CVSS

6.8

EPSS Score

0.16%

Published

2015-04-21

Updated

2016-12-06

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!