CVE-2014-9499

2015-01-09T18:59:00
ID CVE-2014-9499
Type cve
Reporter cve@mitre.org
Modified 2017-09-08T01:29:00

Description

Cross-site scripting (XSS) vulnerability in the Godwin's Law module before 7.x-1.1 for Drupal, when using the dblog module, allows remote authenticated users to inject arbitrary web script or HTML via a Watchdog message.