CVE-2014-8078

Published: Oct 9, 2014Modified: May 6, 2026

3.5

Vector

AV:N/AC:M/Au:S/C:N/I:P/A:N

Exploitability: 6.8 / Impact: 2.9

Source: NVD

Description

Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 6.x-1.x before 6.x-1.19, 7.x-1.x before 7.x-1.3, and 7.x-2.x before 7.x-2.0 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via vectors related to nodes.

Affected (30)

Products: Drupal: Print

Drupal

1 product

Configuration A

30 vulnerable

Vulnerable Software	Affected Versions
Drupal Print	Version 6.x-1.10
Drupal Print	Version 6.x-1.11
Drupal Print	Version 6.x-1.11 beta1
Drupal Print	Version 6.x-1.12
Drupal Print	Version 6.x-1.13
Drupal Print	Version 6.x-1.14
Drupal Print	Version 6.x-1.15
Drupal Print	Version 6.x-1.16
Drupal Print	Version 6.x-1.17
Drupal Print	Version 6.x-1.18
Drupal Print	Version 6.x-1.1
Drupal Print	Version 6.x-1.2
Drupal Print	Version 6.x-1.3
Drupal Print	Version 6.x-1.4
Drupal Print	Version 6.x-1.5
Drupal Print	Version 6.x-1.6
Drupal Print	Version 6.x-1.7
Drupal Print	Version 6.x-1.8
Drupal Print	Version 6.x-1.9
Drupal Print	Version 7.x-1.0
Drupal Print	Version 7.x-1.0 alpha1
Drupal Print	Version 7.x-1.0 alpha2
Drupal Print	Version 7.x-1.0 beta1
Drupal Print	Version 7.x-1.0 beta2
Drupal Print	Version 7.x-1.1
Drupal Print	Version 7.x-1.2
Drupal Print	Version 7.x-1.x-dev
Drupal Print	Version 7.x-2.0 beta1
Drupal Print	Version 7.x-2.0 beta2
Drupal Print	Version 7.x-2.x-dev