Vulnerabilities (CVE)

Filtered by vendor Fourkitchens Subscribe

Filtered by product Block Class

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2016-3144	2 Fedoraproject, Fourkitchens	2 Fedora, Block Class	2023-12-10	3.5 LOW	5.4 MEDIUM
Cross-site scripting (XSS) vulnerability in the Block Class module 7.x-2.x before 7.x-2.2 for Drupal allows remote authenticated users with the "Administer block classes" permission to inject arbitrary web script or HTML via a class name.
CVE-2012-1657	2 Drupal, Fourkitchens	2 Drupal, Block Class	2023-12-10	2.1 LOW	N/A
Cross-site scripting (XSS) vulnerability in block_class.module in the Block Class module before 7.x-1.1 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via the class name.