{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-14T17:20:21.293","vulnerabilities":[{"cve":{"id":"CVE-2013-0181","sourceIdentifier":"secalert@redhat.com","published":"2013-03-27T21:55:01.477","lastModified":"2026-04-29T01:13:23.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in Views in the Search API (search_api) module 7.x-1.x before 7.x-1.4 for Drupal, when using certain backends and facets, allows remote attackers to inject arbitrary web script or HTML via unspecified input, which is returned in an error message."},{"lang":"es","value":"Vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en Views en el API Search (search_api) módulo v7.x-1.x antes de  v7.x-1.4 para Drupal, cuando se utilizan backends o ciertas facetas, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de la entrada no especificada,lo que se devuelve un mensaje de error."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:H/Au:N/C:N/I:P/A:N","baseScore":2.6,"accessVector":"NETWORK","accessComplexity":"HIGH","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":4.9,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.0:*:*:*:*:*:*:*","matchCriteriaId":"5C2AB57F-CE66-4592-BE8D-54F8CA2541EE"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.0:beta1:*:*:*:*:*:*","matchCriteriaId":"14B38EFB-3FF4-4913-AC01-989D607B939E"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.0:beta10:*:*:*:*:*:*","matchCriteriaId":"8D295DF2-D19B-461D-88C8-73D47E30A372"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.0:beta2:*:*:*:*:*:*","matchCriteriaId":"62A480F5-6F09-4B13-A0E9-2354D6278623"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.0:beta3:*:*:*:*:*:*","matchCriteriaId":"424D71B8-8967-47E4-876F-9C8EFB911FEE"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.0:beta4:*:*:*:*:*:*","matchCriteriaId":"6E6046E7-E785-44D6-8A68-08B3668CEEA3"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.0:beta5:*:*:*:*:*:*","matchCriteriaId":"7822CF23-9363-414B-9170-162F86A11596"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.0:beta6:*:*:*:*:*:*","matchCriteriaId":"EA11D4BC-6282-4711-9C84-ED9A535E9E24"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.0:beta7:*:*:*:*:*:*","matchCriteriaId":"6E9A810B-75B0-4D59-B02D-0EC5CD864547"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.0:beta8:*:*:*:*:*:*","matchCriteriaId":"E974B710-A35D-414D-BE38-C6A93159F2C5"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.0:beta9:*:*:*:*:*:*","matchCriteriaId":"E6B3A0F6-83D1-4FEB-90B7-70175820321F"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.0:rc1:*:*:*:*:*:*","matchCriteriaId":"F876DCAA-43BF-436D-AC11-0AEB02ED2FA3"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.1:*:*:*:*:*:*:*","matchCriteriaId":"3863F7DF-D7FF-4189-BD50-1309241EA4AA"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.2:*:*:*:*:*:*:*","matchCriteriaId":"E42D1BCF-6994-434A-94DF-9AEDB1ED4B8A"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.3:*:*:*:*:*:*:*","matchCriteriaId":"9B334570-6DA2-49F4-B0A4-4D88E9A9B935"},{"vulnerable":true,"criteria":"cpe:2.3:a:thomas_seidl:search_api:7.x-1.x:dev:*:*:*:*:*:*","matchCriteriaId":"7C495A87-A4CE-456E-BF41-3C3077609A6E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:a:drupal:drupal:-:*:*:*:*:*:*:*","matchCriteriaId":"F8B1170D-AD33-4C7A-892D-63AC71B032CF"}]}]}],"references":[{"url":"http://drupalcode.org/project/search_api.git/commitdiff/35b5728","source":"secalert@redhat.com"},{"url":"http://osvdb.org/89117","source":"secalert@redhat.com"},{"url":"http://secunia.com/advisories/51806","source":"secalert@redhat.com"},{"url":"http://www.openwall.com/lists/oss-security/2013/01/15/3","source":"secalert@redhat.com"},{"url":"http://www.securityfocus.com/bid/57231","source":"secalert@redhat.com"},{"url":"https://drupal.org/node/1884076","source":"secalert@redhat.com","tags":["Patch"]},{"url":"https://drupal.org/node/1884332","source":"secalert@redhat.com","tags":["Patch","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/81153","source":"secalert@redhat.com"},{"url":"http://drupalcode.org/project/search_api.git/commitdiff/35b5728","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://osvdb.org/89117","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://secunia.com/advisories/51806","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.openwall.com/lists/oss-security/2013/01/15/3","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securityfocus.com/bid/57231","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://drupal.org/node/1884076","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"]},{"url":"https://drupal.org/node/1884332","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/81153","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}