Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
fedoraFedoraFEDORA:D4D0A3067095
HistoryOct 23, 2022 - 9:04 a.m.

[SECURITY] Fedora 36 Update: drupal7-7.92-1.fc36

2022-10-2309:04:53
lists.fedoraproject.org
38
drupal
content management system
php
configurable
secure
unix

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.005

Percentile

75.8%

JSON

Equipped with a powerful blend of features, Drupal is a Content Management System written in PHP that can support a variety of websites ranging from personal weblogs to large community-driven websites. Drupal is highly configurable, skinnable, and secure.

OSVersionArchitecturePackageVersionFilename
Fedora36anydrupal7< 7.92UNKNOWN

Related

fedora 10
nessus 20
openvas 31
drupal 5
osv 24
debian 5
ibm 17
ubuntu 1
f5 2
hp 1
checkpoint_advisories 3
redhat 4
debiancve 6
github 7
cve 7
ubuntucve 7
alpinelinux 5
attackerkb 1
veracode 7
prion 7
cvelist 7
nvd 7
redhatcve 4
mageia 1
securityvulns 1
rubygems 5
nodejs 1
atlassian 1
friendsofphp 1
redos 1
fedora
fedora
[SECURITY] Fedora 37 Update: drupal7-7.92-1.fc37
2022-11-10 22:46:29
[SECURITY] Fedora 35 Update: drupal7-7.92-1.fc35
2022-11-03 15:31:08
[SECURITY] Fedora 34 Update: js-jquery-ui-1.13.0-1.fc34
2021-11-20 01:11:49
nessus
nessus
Fedora 35 : drupal7 (2022-bf18450366)
2022-12-22 00:00:00
Fedora 36 : drupal7 (2022-9d655503ea)
2022-12-23 00:00:00
Drupal 7.x < 7.86 / 9.2.x < 9.2.11 / 9.3.x < 9.3.3 Multiple Vulnerabilities (drupal-2022-01-19)
2022-01-19 00:00:00
openvas
openvas
Fedora: Security Advisory for drupal7 (FEDORA-2022-bf18450366)
2022-11-04 00:00:00
Fedora: Security Advisory for drupal7 (FEDORA-2022-c4334d5277)
2022-11-11 00:00:00
Fedora: Security Advisory for drupal7 (FEDORA-2022-9d655503ea)
2022-10-24 00:00:00
drupal
drupal
Drupal core - Moderately critical - Cross site scripting - SA-CORE-2022-002
2022-01-19 00:00:00
jQuery UI Datepicker - Moderately critical - Cross Site Scripting - SA-CONTRIB-2022-004
2022-01-19 00:00:00
Drupal core - Moderately critical - Improper input validation - SA-CORE-2022-003
2022-02-16 00:00:00
osv
osv
drupal7 - security update
2022-01-19 00:00:00
jqueryui vulnerabilities
2023-10-05 12:36:27
jqueryui - security update
2022-12-07 00:00:00
debian
debian
[SECURITY] [DLA-2889-1] drupal7 security update
2022-01-19 20:00:29
[SECURITY] [DLA 3230-1] jqueryui security update
2022-12-07 10:30:00
[SECURITY] [DSA 3249-1] jqueryui security update
2015-05-03 14:28:26
ibm
ibm
Security Bulletin: IBM Security QRadar SOAR is using a component vulnerable to Cross Site Scripting (CVE-2021-41182, CVE-2021-41183, CVE-2021-41184)
2022-03-03 17:06:48
Security Bulletin: IBM Aspera Orchestrator was vulnerable to cross-site scripting due to multiple JQuery vulnerabilities (CVE-2021-41184, CVE-2021-41183, CVE-2021-41182)
2023-02-02 20:55:36
Security Bulletin: API Connect is vulnerable to JQuery-UI Cross-Site Scripting (XSS) (CVE-2021-41184, CVE-2021-41183, CVE-2021-41182)
2022-10-21 22:13:58
ubuntu
ubuntu
jQuery UI vulnerabilities
2023-10-05 00:00:00
f5
f5
K50455702 : jQuery vulnerabilities CVE-2021-41182, CVE-2021-41183, and CVE-2021-41184
2022-03-28 00:00:00
K95208524 : jQuery vulnerability CVE-2016-7103
2017-11-13 00:00:00
hp
hp
Certain HP Enterprise LaserJet, LaserJet Managed printers - Potential denial of service, potential Cross Site Scripting (XSS)
2023-10-04 00:00:00
checkpoint_advisories
checkpoint_advisories
jQuery UI Datepicker Widget Cross Site Scripting (CVE-2021-41182; CVE-2021-41183)
2022-03-14 00:00:00
jQuery UI Cross-site Scripting (CVE-2016-7103)
2022-10-23 00:00:00
jQuery UI Cross-site Scripting (CVE-2021-41184)
2022-10-19 00:00:00
redhat
redhat
(RHSA-2022:4711) Moderate: RHV Manager (ovirt-engine) [ovirt-4.5.0] security update
2022-05-26 16:04:07
(RHSA-2017:0161) Low: python-XStatic-jquery-ui security update
2017-01-19 13:13:57
(RHSA-2016:2932) Low: python-XStatic-jquery-ui security update
2016-12-08 16:02:28
debiancve
debiancve
CVE-2022-25271
2022-02-16 23:15:00
CVE-2016-7103
2017-03-15 16:59:00
CVE-2010-5312
2014-11-24 16:59:00
github
github
Improper input validation in Drupal core
2022-02-18 00:00:37
jQuery-UI vulnerable to Cross-site Scripting in dialog closeText
2017-10-24 18:33:35
Cross-site Scripting in jquery-ui
2017-10-24 18:33:38
cve
cve
CVE-2022-25271
2022-02-16 23:15:11
CVE-2016-7103
2017-03-15 16:59:00
CVE-2010-5312
2014-11-24 16:59:00
ubuntucve
ubuntucve
CVE-2022-25271
2022-02-16 00:00:00
CVE-2010-5312
2014-11-24 00:00:00
CVE-2016-7103
2017-03-15 00:00:00
alpinelinux
alpinelinux
CVE-2022-25271
2022-02-16 23:15:11
CVE-2016-7103
2017-03-15 16:59:00
CVE-2010-5312
2014-11-24 16:59:00
attackerkb
attackerkb
CVE-2016-7103
2017-03-15 00:00:00
veracode
veracode
Insecure Validation
2022-02-18 06:04:08
Cross-site Scripting (XSS) Via Dialog CloseText
2019-01-15 09:14:35
Cross-site Scripting (XSS)
2019-01-15 09:06:57
prion
prion
Input validation
2022-02-16 23:15:00
Cross site scripting
2017-03-15 16:59:00
Cross site scripting
2014-11-24 16:59:00
cvelist
cvelist
CVE-2022-25271
2022-02-16 00:00:00
CVE-2016-7103
2017-03-15 00:00:00
CVE-2010-5312
2014-11-24 00:00:00
nvd
nvd
CVE-2022-25271
2022-02-16 23:15:11
CVE-2016-7103
2017-03-15 16:59:00
CVE-2021-41183
2021-10-26 15:15:10
redhatcve
redhatcve
CVE-2016-7103
2016-08-29 07:18:37
CVE-2021-41182
2021-11-01 17:41:12
CVE-2021-41184
2021-11-01 17:41:18
mageia
mageia
Updated couchdb packages fix CVE-2010-5312
2014-12-31 15:28:04
securityvulns
securityvulns
[SECURITY] [DSA 3249-1] jqueryui security update
2015-05-11 00:00:00
rubygems
rubygems
Cross-site Scripting in jquery-ui
2017-10-23 21:00:00
XSS Vulnerability on closeText option of Dialog jQuery UI
2016-08-26 21:00:00
XSS in the `of` option of the `.position()` util in jquery-ui
2021-10-25 21:00:00
nodejs
nodejs
XSS in dialog closeText
2016-07-21 20:53:40
atlassian
atlassian
The jQuery version used in JIRA needs to be updated
2015-05-18 09:31:54
friendsofphp
friendsofphp
Drupal core - Moderately critical - Information Disclosure - SA-CORE-2022-012
2022-07-20 18:00:00
redos
redos
ROS-20220225-02
2022-02-25 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS

0.005

Percentile

75.8%

JSON
Related for FEDORA:D4D0A3067095
fedora10nessus20openvas31drupal5osv24debian5ibm17ubuntu1f52hp1checkpoint_advisories3redhat4debiancve6github7cve7ubuntucve7alpinelinux5attackerkb1veracode7prion7cvelist7nvd7redhatcve4mageia1securityvulns1rubygems5nodejs1atlassian1friendsofphp1redos1