CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-2998

Multiple cross-site scripting (XSS) vulnerabilities in the Aggregation module 5.x before 5.x-4.4 for Drupal allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 48.1%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2008-2998

Drupal » Aggregation Module » Version: 3.0

cpe:2.3:a:drupal:aggregation_module:3.0
Drupal » Aggregation Module » Version: 3.1

cpe:2.3:a:drupal:aggregation_module:3.1
Drupal » Aggregation Module » Version: 3.2

cpe:2.3:a:drupal:aggregation_module:3.2
Drupal » Aggregation Module » Version: 4.0

cpe:2.3:a:drupal:aggregation_module:4.0
Drupal » Aggregation Module » Version: 4.1

cpe:2.3:a:drupal:aggregation_module:4.1
Drupal » Aggregation Module » Version: 4.2

cpe:2.3:a:drupal:aggregation_module:4.2
Drupal » Aggregation Module » Version: 4.3

cpe:2.3:a:drupal:aggregation_module:4.3
Drupal » Drupal » Version: 5.0

cpe:2.3:a:drupal:drupal:5.0
Drupal » Drupal » Version: 5.1

cpe:2.3:a:drupal:drupal:5.1
Drupal » Drupal » Version: 5.1_rev1.1

cpe:2.3:a:drupal:drupal:5.1_rev1.1
Drupal » Drupal » Version: 5.2

cpe:2.3:a:drupal:drupal:5.2
Drupal » Drupal » Version: 5.3

cpe:2.3:a:drupal:drupal:5.3
Drupal » Drupal » Version: 5.4

cpe:2.3:a:drupal:drupal:5.4
Drupal » Drupal » Version: 5.5.

cpe:2.3:a:drupal:drupal:5.5.
Drupal » Drupal » Version: 5.7

cpe:2.3:a:drupal:drupal:5.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-2998

Products

Pricing

Contact Us