EUVD-2013-1432

Malware in sbrugna...

CVE-2013-1393

Cross-site scripting XSS vulnerability in the CurvyCorners module 6.x-1.x and 7.x-1.x for Drupal allows remote authenticated users with the "administer curvycorners" permission to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in the CurvyCorners module 6.x-1.x and 7.x-1.x for Drupal allows remote authenticated users with the "administer curvycorners" permission to inject arbitrary web script or HTML via unspecified vectors...

CVE-2013-1393

Cross-site scripting XSS vulnerability in the CurvyCorners module 6.x-1.x and 7.x-1.x for Drupal allows remote authenticated users with the "administer curvycorners" permission to inject arbitrary web script or HTML via unspecified vectors...

CVE-2013-1393

The CVE-2013-1393 entry affects the Drupal CurvyCorners module (versions 6.x-1.x and 7.x-1.x). The root cause is insufficient filtering of user-entered text when rendering the module’s output, enabling Cross-site Scripting (XSS) by remote authenticated users who hold the "administer curvycorners"...

SA-CONTRIB-2013-008 - CurvyCorners - Cross Site Scripting (XSS) - module unsupported

The CurvyCorners module enables you to create rounded corners on HTML block elements. The module doesn't sufficiently filter user entered text when being displayed. This vulnerability is mitigated by the fact that an attacker must have a role with the permission "administer curvycorners". CVE...