EUVD-2012-2695

Malware in sbrugna...

CVE-2012-2715

Cross-site scripting XSS vulnerability in the themeslinks function in template.php in the Amadou theme module 6.x-1.x before 6.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via vectors related to class attributes in a list of links...

Cross site scripting

Cross-site scripting XSS vulnerability in the themeslinks function in template.php in the Amadou theme module 6.x-1.x before 6.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via vectors related to class attributes in a list of links...

CVE-2012-2715

CVE-2012-2715 affects the Amadou theme for Drupal 6.x-1.x prior to 6.x-1.3. The issue is a Cross-Site Scripting (XSS) vulnerability in the themes_links() function in template.php, where improper handling of class attributes in a list of links allows remote script/HTML injection. The vulnerability...

SA-CONTRIB-2012-086 - Amadou - Cross Site Scripting

The Amadou theme outputs additional first and last classes to the list of links to help out themers. This was being done in a way that was not secure. A Cross Site Scripting XSS vulnerability was identified in Amadou theme's themeslinks function in the template.php file, which was fixed in the...