CVE-2011-5187
The CVE-2011-5187 entry describes a Cross-site scripting (XSS) flaw in Drupal’s Support Ticketing System module (6.x-1.x) prior to 6.x-1.7. The vulnerability allows remote authenticated users with the 'administer support projects' permission to inject arbitrary web script or HTML via unspecified ...