Cross-site scripting (XSS) vulnerability in Refine by Taxonomy 5.x before 5.x-0.1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via a taxonomy term, which is not properly handled by refine_by_taxo when displaying tags.
CPE | Name | Operator | Version |
---|---|---|---|
refine_by_taxo | eq | 5.0.0-x1-xdev |