CVE-2015-3385

2015-04-21T14:59:07
ID CVE-2015-3385
Type cve
Reporter NVD
Modified 2016-12-05T22:00:40

Description

Cross-site scripting (XSS) vulnerability in the Taxonomy Path module before 7.x-1.2 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via the "Link to path" field formatter.