CVE-2012-5585

EPSS 0.34% · P56 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2012-5585

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Cross-site scripting (XSS) vulnerability in the Mixpanel module 6.x-1.x before 6.x-1.1 in Drupal allows remote authenticated users with the "access administration pages" permission to inject arbitrary web script or HTML via the Maxpanel token.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Drupal Mixpanel模块跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Drupal是Drupal社区所维护的一套用PHP语言开发的免费、开源的内容管理系统。 Drupal中的Mixpanel模块6.x-1.1之前的6.x-1.x版本中存在跨站脚本漏洞，该漏洞源于没有正确验证用户提供的文本。攻击者利用该漏洞在受影响站点上下文中不知情用户浏览器上执行任意脚本代码，有助于窃取基于cookie认证证书进而发起其他攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2012-5585

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2012-5585

请登录查看更多情报信息。

🔗 http://drupal.org/node/1853198x_refsource_MISC
🔗 http://drupalcode.org/project/mixpanel.git/commit/7dbd715x_refsource_CONFIRM
🔗 http://drupal.org/node/1762886x_refsource_MISC
🔗 http://drupal.org/node/1852098x_refsource_CONFIRM
🔗 http://www.securityfocus.com/bid/56719vdb-entryx_refsource_BID
🔗 http://www.openwall.com/lists/oss-security/2012/11/29/2mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2012-5585

Same Patch Batch · n/a · 2012-12-26 · 24 CVEs total

CVE-2012-4816		IBM Rational Automation Framework Web UI 安全绕过漏洞
CVE-2012-6314		Citrix XenDesktop 虚拟桌面代理本地安全绕过漏洞
CVE-2012-5625		OpenStack Nova 本地信息泄露漏洞
CVE-2012-5483		OpenStack Keystone 不安全文件权限漏洞
CVE-2012-5161		Citrix XenApp XML Service Interface 远程代码执行漏洞
CVE-2012-0962		Ubuntu Aptdaemon PPA GPG 密钥验证安全绕过漏洞
CVE-2012-0961		Ubuntu APT 不安全文件权限本地信息泄露漏洞
CVE-2012-0958		Ubuntu 'unity-firefox-extension' Package 跨域信息泄露漏洞
CVE-2012-6299		CA IdentityMinder 权限提升漏洞
CVE-2012-6298		CA IdentityMinder 任意命令执行漏洞
CVE-2012-4616		EMC Data Protection Advisor 目录遍历漏洞
CVE-2012-5951		IBM Tivoli NetView for z/OS 权限提升漏洞
CVE-2012-5179		Boat Browser和Mini 权限许可和访问控制问题漏洞
CVE-2012-5591		Drupal Zero Point Theme模块跨站脚本漏洞
CVE-2012-5590		Drupal Webmail Plus模块SQL注入漏洞
CVE-2012-5589		Drupal Multi-Language Link and Redirect模块安全绕过漏洞
CVE-2012-5588		Drupal Email Field模块跨站脚本漏洞和安全绕过漏洞
CVE-2012-5587		Drupal Email Field 模块跨站脚本漏洞和安全绕过漏洞
CVE-2012-5586		Drupal Services模块信息泄露漏洞
CVE-2012-5584		Drupal Table of Contents模块安全漏洞

Showing top 20 of 24 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2012-5585

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2012-5585

I. Basic Information for CVE-2012-5585

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2012-5585

III. Intelligence Information for CVE-2012-5585

Same Patch Batch · n/a · 2012-12-26 · 24 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2012-5585

Leave a comment