6 matches found
EUVD-2013-4360
Malware in sbrugna...
CVE-2013-4499
Cross-site scripting XSS vulnerability in the Bean module 7.x-1.x before 7.x-1.5 for Drupal allows remote attackers to inject arbitrary web script or HTML via the bean title...
Cross site scripting
Cross-site scripting XSS vulnerability in the Bean module 7.x-1.x before 7.x-1.5 for Drupal allows remote attackers to inject arbitrary web script or HTML via the bean title...
CVE-2013-4499
The vulnerability CVE-2013-4499 affects the Drupal Bean module (Bean 7.x-1.x) for Drupal 7.x, where the bean title is not sufficiently filtered, allowing an attacker to inject arbitrary script/HTML via the title (XSS). Root cause: inadequate input sanitization in the Bean titles path. Affected ve...
CVE-2013-4499
Cross-site scripting XSS vulnerability in the Bean module 7.x-1.x before 7.x-1.5 for Drupal allows remote attackers to inject arbitrary web script or HTML via the bean title...
SA-CONTRIB-2013-082 - Bean - Cross Site Scripting (XSS)
This module enables you to create block entities a.k.a. beans. The module did not sufficiently filter bean titles for dangerous html. This vulnerability is mitigated by the fact that an attacker must have permission to create or edit beans. CVE identifiers issued CVE-2013-4499 Versions affected...