Vulnerability CVE-2012-2339

Vulnerability CVE-2012-2339

Published: 2012-05-21 Modified: 2012-05-22

Description:

	Topic	Author	Date
Low	Drupal Glossary 6.x Cross Site Scripting	Dylan Wilder-Tac...	10.05.2012

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Nancy wichmann -> Glossary
Drupal -> Drupal

http://www.securityfocus.com/bid/53440

http://www.openwall.com/lists/oss-security/2012/06/15/6

http://www.openwall.com/lists/oss-security/2012/06/14/3

http://www.openwall.com/lists/oss-security/2012/05/11/2

http://www.openwall.com/lists/oss-security/2012/05/10/6

http://secunia.com/advisories/49074

http://drupalcode.org/project/glossary.git/commitdiff/c6cc3ac

http://drupal.org/node/1569482

http://drupal.org/node/1568156