Simple Subscription Project - Simple Subscription CVE - CVE Search - CVE Details

Filtered by vendor Simple Subscription Project Subscribe

Filtered by product Simple Subscription

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2015-4367	1 Simple Subscription Project	1 Simple Subscription	2015-06-26	3.5 LOW	N/A
Cross-site scripting (XSS) vulnerability in the Simple Subscription module before 6.x-1.1 and 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "administer blocks" permission to inject arbitrary web script or HTML via vectors related to block content.

Vulnerabilities (CVE)