CVE-2012-1637: XSS
First published: Thu Nov 21 2019(Updated: )
Cross-site scripting vulnerability (XSS) in the Quick Tabs module 6.x-2.x before 6.x-2.1, 6.x-3.x before 6.x-3.1, and 7.x-3.x before 7.x-3.3 for Drupal.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Drupal Quick Tabs | =6.x-2.0 | |
| Drupal Quick Tabs | =6.x-3.0 | |
| Drupal Quick Tabs | =7.x-3.0 | |
| Drupal Quick Tabs | =7.x-3.1 | |
| Drupal Quick Tabs | =7.x-3.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2012-1637?
CVE-2012-1637 is classified as a moderate severity cross-site scripting (XSS) vulnerability.
How do I fix CVE-2012-1637?
To fix CVE-2012-1637, upgrade to Quick Tabs versions 6.x-2.1, 6.x-3.1, or 7.x-3.3 or later.
Which versions of the Quick Tabs module are affected by CVE-2012-1637?
CVE-2012-1637 affects Quick Tabs versions prior to 6.x-2.1, 6.x-3.1, and 7.x-3.3.
What type of vulnerability is CVE-2012-1637?
CVE-2012-1637 is a cross-site scripting (XSS) vulnerability relevant to Drupal sites.
What are the potential impacts of CVE-2012-1637?
The potential impacts of CVE-2012-1637 include unauthorized access to user session data and content manipulation.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/description
- agent/type
- agent/tags
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- vendor/drupal
- canonical/drupal quick tabs
- version/drupal quick tabs/6.x-2.0
- version/drupal quick tabs/6.x-3.0
- version/drupal quick tabs/7.x-3.0
- version/drupal quick tabs/7.x-3.1
- version/drupal quick tabs/7.x-3.2