CVE-2012-3800
The vulnerability CVE-2012-3800 affects the Organic Groups module for Drupal (6.x-2.x) prior to 6.x-2.4 when used with the Vertical Tabs module. The issue is an XSS in og.js that allows remote authenticated users to inject arbitrary script or HTML via the group title. The Drupal security advisory...