Unrated severityNVD Advisory· Published Aug 18, 2015· Updated Jun 17, 2026
CVE-2015-5494
CVE-2015-5494
Description
Cross-site scripting (XSS) vulnerability in the Webform Matrix Component module 7.x-4.x before 7.x-4.13 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:webform_matrix_component_project:webform_matrix_component:*:*:*:*:*:drupal:*:*Range: >=7.x-4.0,<7.x-4.13
- Range: <7.x-4.13
Patches
Vulnerability mechanics
References
3- www.drupal.org/node/2442741nvdPatch
- www.drupal.org/node/2484231nvdPatchVendor Advisory
- www.openwall.com/lists/oss-security/2015/07/04/4nvdMailing List
News mentions
0No linked articles in our index yet.