Vulnerabilities (CVE)

Filtered by vendor Drupal Subscribe
Filtered by product Realname
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-2298 2 Drupal, Nancy Wichmann 3 Drupal, Realname, Realname 2024-02-04 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in the RealName module 6.x-1.x before 6.x-1.5 for Drupal allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) "user names in page titles" and (2) "autocomplete callbacks."