3 matches found
CVE-2009-2083
Cross-site scripting XSS vulnerability in the term data detail page in Taxonomy manager 5.x before 5.x-1.2, a module for Drupal, allows remote authenticated users, with administer taxonomy privileges or the ability to use free tagging to add taxonomy terms, to inject arbitrary web script or HTML...
CVE-2009-2083
Cross-site scripting XSS vulnerability in the term data detail page in Taxonomy manager 5.x before 5.x-1.2, a module for Drupal, allows remote authenticated users, with administer taxonomy privileges or the ability to use free tagging to add taxonomy terms, to inject arbitrary web script or HTML...
CVE-2009-2083
Taxonomy manager 5.x (Drupal) contains an XSS vulnerability in the term data detail page. Specifically, versions before 5.x-1.2 allow remote authenticated users with administer taxonomy privileges or the ability to add taxonomy terms via free tagging to inject arbitrary script/HTML through the "P...