CVE-2012-1561

{"id": "CVE-2012-1561", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2014-04-08T14:22:09.660", "references": [{"url": "http://drupal.org/node/1432318", "source": "secalert@redhat.com"}, {"url": "http://drupal.org/node/1432320", "source": "secalert@redhat.com"}, {"url": "http://drupalcode.org/project/finder.git/commit/13e2d0c", "source": "secalert@redhat.com"}, {"url": "http://drupalcode.org/project/finder.git/commit/58443aa", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/47941", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/47943", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.madirish.net/content/drupal-finder-6x-19-xss-and-remote-code-execution-vulnerabilities", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2012/03/16/9", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2012/03/19/9", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2012/04/07/1", "source": "secalert@redhat.com"}, {"url": "http://www.osvdb.org/79015", "source": "secalert@redhat.com"}, {"url": "https://drupal.org/node/1432970", "tags": ["Vendor Advisory", "Patch"], "source": "secalert@redhat.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/73110", "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-79"}]}], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the \"checkbox and radio button functionalities.\""}, {"lang": "es", "value": "Vulnerabilidad de XSS en el m\u00f3dulo Finder 6.x-1.x anterior a 6.x-1.26, 7.x-1.x y 7.x-2.x anterior a 7.x-2.0-alpha8 para Drupal permite a atacantes remotos inyectar script Web o HTML arbitrarios a trav\u00e9s de vectores no especificados relacionados con \"funcionalidades de bot\u00f3n de casilla de verificaci\u00f3n y radio.\""}], "lastModified": "2017-08-29T01:31:18.993", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ECAB5556-2D6A-4724-8A8C-33A9A56CAB2A"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ABC2F8E7-8831-4245-AC98-B6E9BDD5BFE8"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha10:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CA4D18A4-7BE0-429D-92F4-9D36AF0B544B"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha11:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC31DF6C-43DC-4D14-9652-131E1F6D6087"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha12:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C710A9C-492C-420B-846C-88915EC81EFA"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha13:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63B0B97E-8B43-4C04-9CD2-62227946189A"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha14:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D5CB5802-F368-4F45-91F6-5BF7EADD33CC"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha15:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F63A4E57-90ED-4B43-AA57-039A07C3BF7C"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha16:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6A8E9D3A-0C79-4650-B403-8F0A286E66E7"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha17:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "959616EB-EFC3-409B-973F-6F7FE30C0741"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha18:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F7154E41-8216-4561-90F2-F8FD7713CE4C"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha19:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "601A9856-5A88-4DE1-B751-FA9320806100"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6D7FA592-38C3-40CE-B6D0-B6511C497E41"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha20:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D802E6B-2B2B-4703-90BC-B2E0DD0E8012"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha21:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C41609E-4A2B-44F9-9F74-B29BF3628EBD"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha22:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "70ED9990-E62B-4F7A-8756-850208DECF3E"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha23:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F3C452B-D50D-4F28-8253-9E48365654F5"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha24:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE503058-798A-44F7-8705-027C9C05390D"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha25:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6704B28D-77D1-4718-AD73-570E0F449D9D"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha26:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "854B028B-C6BD-4D20-9A27-306CE1B7A696"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha27:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC0F76F3-47EB-472D-8822-C4F62455E193"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha28:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D14A7373-21DA-4A75-BCE6-3655237EA80B"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C8671C56-AE42-427A-B916-99BC2B605F21"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F67B2F3C-2546-4262-8FE0-91FE9652CDC1"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BD1B7808-8DF0-4ED9-A189-DB23ECFD2B40"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "28E9C8B4-C62E-415A-A819-ABB4594C32DE"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B1748F1-DE07-4914-AB65-F5ED73E5A388"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha8:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FB86F180-7B28-47BB-B964-13AD6BCA0BE0"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:alpha9:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6BDC5314-5AF9-4C99-B296-631AC133C3B1"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:beta1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "932C3C72-A9B9-4CA6-8A63-5CBD21080FBA"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:beta2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1DA7DA76-BC39-4589-BDAA-A2BFC9154A94"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:beta3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F187D4E5-9220-49F9-B8B3-ACF0D46E4269"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "91C9EAE1-EF5D-43EC-8B5B-7BA7567E35C8"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "59968AC8-FE0B-40DF-91E1-450EBD52A406"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:rc3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "38A06CDF-2037-414E-A4AE-E11D2567DFE1"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:rc4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "765AC4DC-DF43-41C1-8BDB-9F2A066B8B4B"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:unstable0:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "60E03E68-97F5-41DB-82F5-11A04DEB3D46"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:unstable1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "227BB15A-6B03-49A7-9EEC-F858133093AF"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:unstable2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DF5F6248-FF35-4D11-AD09-9DC7B0A10CB8"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:unstable3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A2A674B0-0A7A-4656-8E06-81C6535F1836"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:unstable4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1F097AE3-6F40-499E-9735-2C1247D35FDD"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:unstable5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5AD1CE80-0912-4779-AD8C-196847DE6DAD"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:unstable6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8F0C9F57-A9B9-4E72-AFB8-011F7018600A"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.0:unstable7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1E12F832-D8E5-4433-9BFD-4B8FC8F803B6"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF325929-15E9-4CE6-BAD7-9685A6DD350A"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0DA87F37-0629-4700-A864-43DE48FFDF06"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6A1C3EA1-656B-4E64-8057-E4FA1ED48BBE"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D561F6AD-1025-4CB1-8C89-15EE00D1780E"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B238BF6-95CC-4225-808F-EC564722D714"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C4696C0-CAE6-4DA8-982F-D69508EBF885"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "69F7E6CD-F36E-4940-818B-14B0553DE6BD"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A11B39CD-79B6-45D9-B74F-119F1ECADBAA"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "629C326F-3083-4B54-8B8F-CB3ADDB86697"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "400B9BD7-526F-4262-9C15-A62EEAC398AE"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "58331DD3-9F51-425F-B9CC-E6CD5098730A"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E70BA3DC-29D2-4B5D-AB77-F671C7096F60"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6D5F259A-70DC-4B86-BDD1-BF9769D09278"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7EA6D683-62E9-45D7-B976-BA95A572D66A"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F773036-717B-4C9E-96AE-C53A4AD96412"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC29EDE4-EB3E-4D55-A9F9-0E3EDAD3AEC9"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD9A8C3A-3333-4FA0-9062-2A32CECF7EC9"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.18:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7F0745EC-1BFA-436A-932B-E2F37D0751C6"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.19:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B457A70-D5CF-40D5-AE1D-C9FA2641C267"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.20:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD002F99-26D4-4CB1-8671-3DB5A7BFFA72"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.21:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9CD0B4E2-335D-40D3-842B-2DFD37473CD7"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.23:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C0761F17-D755-4D69-9E11-EC069C8E7320"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.24:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "01CC175F-60EA-4747-B2BA-EE6F27256095"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.25:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BCD2C47F-5CFE-4766-BCF4-35B0B8BBBC8A"}, {"criteria": "cpe:2.3:a:danielb:finder:6.x-1.x-dev:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8738229B-A0E2-4F6A-873C-10F852C5B670"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BDE8A932-C637-43A8-ACA2-3465A700D50D"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E811DDE5-C168-4458-9238-CD581A0DCDC3"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C2F513BF-9AF4-469B-BC10-CAA04F6E53FC"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08839998-1373-4900-8A5D-31739F690587"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-1.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E7433E00-08F8-473E-8091-A7907983778F"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-1.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2A2E062F-8CC4-4EBE-A628-963C3CB325BD"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B2C414FE-8E57-4F51-92BE-A73D5B087132"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-1.x:dev:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A3678827-41F8-4190-9B3A-1FB244681D82"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-2.0:alpha1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A645395-F59B-44A3-B7D8-3DB4C69A890D"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-2.0:alpha2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "914F133C-D035-4481-9868-BBF264FE1344"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-2.0:alpha3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48127582-98BA-41EA-9701-2EF78919624B"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-2.0:alpha4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0CF6C6A-AF5A-4DC5-9A55-2361A6776CD4"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-2.0:alpha5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "33FF98EE-F5BA-44B1-A2AF-32182A0788B5"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-2.0:alpha6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "144724D3-4DFD-4882-A146-2B9207AC950C"}, {"criteria": "cpe:2.3:a:danielb:finder:7.x-2.x:dev:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07907C37-E6E2-4B85-B209-6C474F349762"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}