Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2012-6645
HistoryApr 08, 2014 - 2:22 p.m.

CVE-2012-6645

2014-04-0814:22:09
CWE-79
[email protected]
web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.6 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.5%

JSON

Cross-site scripting (XSS) vulnerability in the autocomplete functionality in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote attackers to inject arbitrary web script or HTML via the title of a node, a different vulnerability than CVE-2012-1561.

Affected configurations

NVD
Node
danielbfinderMatch6.x-1.0
OR
danielbfinderMatch6.x-1.0alpha1
OR
danielbfinderMatch6.x-1.0alpha10
OR
danielbfinderMatch6.x-1.0alpha11
OR
danielbfinderMatch6.x-1.0alpha12
OR
danielbfinderMatch6.x-1.0alpha13
OR
danielbfinderMatch6.x-1.0alpha14
OR
danielbfinderMatch6.x-1.0alpha15
OR
danielbfinderMatch6.x-1.0alpha16
OR
danielbfinderMatch6.x-1.0alpha17
OR
danielbfinderMatch6.x-1.0alpha18
OR
danielbfinderMatch6.x-1.0alpha19
OR
danielbfinderMatch6.x-1.0alpha2
OR
danielbfinderMatch6.x-1.0alpha20
OR
danielbfinderMatch6.x-1.0alpha21
OR
danielbfinderMatch6.x-1.0alpha22
OR
danielbfinderMatch6.x-1.0alpha23
OR
danielbfinderMatch6.x-1.0alpha24
OR
danielbfinderMatch6.x-1.0alpha25
OR
danielbfinderMatch6.x-1.0alpha26
OR
danielbfinderMatch6.x-1.0alpha27
OR
danielbfinderMatch6.x-1.0alpha28
OR
danielbfinderMatch6.x-1.0alpha3
OR
danielbfinderMatch6.x-1.0alpha4
OR
danielbfinderMatch6.x-1.0alpha5
OR
danielbfinderMatch6.x-1.0alpha6
OR
danielbfinderMatch6.x-1.0alpha7
OR
danielbfinderMatch6.x-1.0alpha8
OR
danielbfinderMatch6.x-1.0alpha9
OR
danielbfinderMatch6.x-1.0beta1
OR
danielbfinderMatch6.x-1.0beta2
OR
danielbfinderMatch6.x-1.0beta3
OR
danielbfinderMatch6.x-1.0rc1
OR
danielbfinderMatch6.x-1.0rc2
OR
danielbfinderMatch6.x-1.0rc3
OR
danielbfinderMatch6.x-1.0rc4
OR
danielbfinderMatch6.x-1.0unstable0
OR
danielbfinderMatch6.x-1.0unstable1
OR
danielbfinderMatch6.x-1.0unstable2
OR
danielbfinderMatch6.x-1.0unstable3
OR
danielbfinderMatch6.x-1.0unstable4
OR
danielbfinderMatch6.x-1.0unstable5
OR
danielbfinderMatch6.x-1.0unstable6
OR
danielbfinderMatch6.x-1.0unstable7
OR
danielbfinderMatch6.x-1.1
OR
danielbfinderMatch6.x-1.2
OR
danielbfinderMatch6.x-1.3
OR
danielbfinderMatch6.x-1.4
OR
danielbfinderMatch6.x-1.5
OR
danielbfinderMatch6.x-1.6
OR
danielbfinderMatch6.x-1.7
OR
danielbfinderMatch6.x-1.8
OR
danielbfinderMatch6.x-1.9
OR
danielbfinderMatch6.x-1.10
OR
danielbfinderMatch6.x-1.11
OR
danielbfinderMatch6.x-1.12
OR
danielbfinderMatch6.x-1.13
OR
danielbfinderMatch6.x-1.14
OR
danielbfinderMatch6.x-1.15
OR
danielbfinderMatch6.x-1.16
OR
danielbfinderMatch6.x-1.17
OR
danielbfinderMatch6.x-1.18
OR
danielbfinderMatch6.x-1.19
OR
danielbfinderMatch6.x-1.20
OR
danielbfinderMatch6.x-1.21
OR
danielbfinderMatch6.x-1.23
OR
danielbfinderMatch6.x-1.24
OR
danielbfinderMatch6.x-1.25
OR
danielbfinderMatch6.x-1.x-dev
OR
danielbfinderMatch7.x-1.0
OR
danielbfinderMatch7.x-1.1
OR
danielbfinderMatch7.x-1.2
OR
danielbfinderMatch7.x-1.3
OR
danielbfinderMatch7.x-1.4
OR
danielbfinderMatch7.x-1.5
OR
danielbfinderMatch7.x-1.6
OR
danielbfinderMatch7.x-1.xdev
OR
danielbfinderMatch7.x-2.0alpha1
OR
danielbfinderMatch7.x-2.0alpha2
OR
danielbfinderMatch7.x-2.0alpha3
OR
danielbfinderMatch7.x-2.0alpha4
OR
danielbfinderMatch7.x-2.0alpha5
OR
danielbfinderMatch7.x-2.0alpha6
OR
danielbfinderMatch7.x-2.xdev

Related

cve 2
prion 2
cvelist 2
nvd 1
cve
cve
CVE-2012-6645
2014-04-08 14:22:09
CVE-2012-1561
2014-04-08 14:22:09
prion
prion
Cross site scripting
2014-04-08 14:22:00
Cross site scripting
2014-04-08 14:22:00
cvelist
cvelist
CVE-2012-6645
2014-04-08 14:00:00
CVE-2012-1561
2014-04-08 14:00:00
nvd
nvd
CVE-2012-1561
2014-04-08 14:22:09

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.6 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.5%

JSON
Related for NVD:CVE-2012-6645
cve2prion2cvelist2nvd1