Cross-site scripting (XSS) vulnerability in Feed Block 6.x-1.x before 6.x-1.1, a module for Drupal, allows remote authenticated users with administrator feed permissions to inject arbitrary web script or HTML via unspecified vectors in “aggregator items.”
CPE | Name | Operator | Version |
---|---|---|---|
feed_block | eq | 6.x-1.0 rc1 | |
feed_block | eq | 6.120.10 | |
feed_block | eq | 6.x-1.0 rc2 | |
feed_block | eq | 6.x-1.x dev |