Vulnerabilities > Social Stats Project > Social Stats > Low
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-08-25 | CVE-2014-5456 | Cross-Site Scripting vulnerability in Social Stats Project Social Stats Cross-site scripting (XSS) vulnerability in the Social Stats module before 7.x-1.5 for Drupal allows remote authenticated users with the "[Content Type]: Create new content" permission to inject arbitrary web script or HTML via vectors related to the configuration. | 2.1 |