3 matches found
Drupal RedHen CRM Module Cross-Site Scripting Vulnerability
Drupal is a free, open source content management system developed in PHP and maintained by the Drupal community.RedHen CRM is one of the CRM modules. A cross-site scripting vulnerability exists in Drupal RedHen CRM, which allows remote attackers to exploit the vulnerability to inject malicious...
RedHen CRM - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2016-002
The Redhen set of modules allows you to build a CRM features in a Drupal site. When rendering individual Contacts, this module does not properly filter the certain data prior to display. When rendering listing of notes or engagement scores, these modules do not properly filter certain data before...
SA-CONTRIB-2014-079 - RedHen CRM - Cross Site Scripting (XSS)
The RedHen CRM project contains the redhendedup module which enables you to find duplicate contacts in the CRM. The redhendedup module doesn't sufficiently filter administrator-entered text when deduping contacts as which creates a Cross Site Scripting XSS vulnerability. The vulnerability is...