3 matches found
CVE-2010-3022
Cross-site scripting XSS vulnerability in the Performance logging module in the Devel module 5.x before 5.x-1.3 and 6.x before 6.x-1.21 for Drupal allows remote authenticated users, with add url aliases and report access permissions, to inject arbitrary web script or HTML via crafted node paths i...
CVE-2010-3022
Cross-site scripting XSS vulnerability in the Performance logging module in the Devel module 5.x before 5.x-1.3 and 6.x before 6.x-1.21 for Drupal allows remote authenticated users, with add url aliases and report access permissions, to inject arbitrary web script or HTML via crafted node paths i...
CVE-2010-3022
CVE-2010-3022 is a cross-site scripting (XSS) vulnerability in the Drupal Devel module's Performance logging component. Affected versions are Drupal Devel module 5.x prior to 5.x-1.3 and 6.x prior to 6.x-1.21. The issue allows remote authenticated users, granted add url aliases and report access ...