Lucene search
PRIOn knowledge basePRION:CVE-2012-2708HistoryJun 27, 2012 - 12:55 a.m.
Cross site scripting
2012-06-2700:55:00
PRIOn knowledge base
www.prio-n.com
5
Cross-site scripting (XSS) vulnerability in the _hosting_task_log_table function in modules/hosting/task/hosting_task.module in the Hostmaster (Aegir) module 6.x-1.x before 6.x-1.9 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via a Drush log message in a provision task log.
| CPE | Name | Operator | Version |
|---|---|---|---|
| hostmaster | eq | 6.120.12 | |
| hostmaster | eq | 6.120.13 | |
| hostmaster | eq | 6.120.14 | |
| hostmaster | eq | 6.120.15 | |
| hostmaster | eq | 6.120.16 | |
| hostmaster | eq | 6.120.17 | |
| hostmaster | eq | 6.120.18 | |
| hostmaster | eq | 6.x-1.x dev |
Related
cve
cve
CVE-2012-2708
2012-06-27 00:55:04
nvd
nvd
CVE-2012-2708
2012-06-27 00:55:04
cvelist
cvelist
CVE-2012-2708
2012-06-27 00:00:00
drupal
drupal