CVE-2015-4373

2015-06-15T14:59:00
ID CVE-2015-4373
Type cve
Reporter cve@mitre.org
Modified 2015-06-26T15:56:00

Description

Cross-site scripting (XSS) vulnerability in the OG tabs module before 7.x-1.1 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via vectors related to nodes posted in an Organic Groups group.