3 matches found
CVE-2012-2076
Cross-site scripting XSS vulnerability in the administration forms in the ShareThis module 7.x-2.x before 7.x-2.3 for Drupal allows remote authenticated users with administer sharethis permissions to inject arbitrary web script or HTML via unspecified vectors...
CVE-2012-2076
Cross-site scripting XSS vulnerability in the administration forms in the ShareThis module 7.x-2.x before 7.x-2.3 for Drupal allows remote authenticated users with administer sharethis permissions to inject arbitrary web script or HTML via unspecified vectors...
CVE-2012-2076
The CVE-2012-2076 issue affects the Drupal ShareThis module (7.x-2.x) prior to 7.x-2.3. The root cause is improper handling of the Form API in the administration forms, enabling an authenticated user with the administer sharethis permission to inject arbitrary web script or HTML (XSS) via unspeci...