Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Menhir Subscribe
Filtered by product Heartbeat
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2010-2048 2 Drupal, Menhir 2 Drupal, Heartbeat 2024-02-28 3.5 LOW N/A
Multiple cross-site scripting (XSS) vulnerabilities in the Heartbeat module 6.x before 6.x-4.9 for Drupal allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.