Drupal Autocomplete System Cross Site Scripting Vulnerability

Bugtraq ID: 76434
Class: Input Validation Error
CVE: CVE-2015-6658
Remote: Yes
Local: No
Published: Aug 19 2015 12:00AM
Updated: Nov 03 2015 07:51PM
Credit: Alex Bronstein and Pere Orga of the Drupal Security Team.
Vulnerable: Drupal Drupal 7.6
Drupal Drupal 7.5
Drupal Drupal 7.4
Drupal Drupal 7.3
Drupal Drupal 7.2
Drupal Drupal 7.14
Drupal Drupal 7.13
Drupal Drupal 7.12
Drupal Drupal 7.11
Drupal Drupal 7.10
Drupal Drupal 7.1
Drupal Drupal 7.0
Drupal Drupal 6.9
Drupal Drupal 6.8
Drupal Drupal 6.6
Drupal Drupal 6.4
Drupal Drupal 6.3
Drupal Drupal 6.23
Drupal Drupal 6.22
Drupal Drupal 6.2
Drupal Drupal 6.18
Drupal Drupal 6.17
Drupal Drupal 6.16
Drupal Drupal 6.15
Drupal Drupal 6.14
Drupal Drupal 6.13
Drupal Drupal 6.12
Drupal Drupal 6.11
Drupal Drupal 6.10
Drupal Drupal 6.1
Drupal Drupal 6.0
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus