CVE-2012-5548

CVE-2012-5548 is a Drupal Time Spent module (6.x/7.x) XSS vulnerability caused by insufficient input sanitization. Reports in the Drup al security advisory note multiple vulnerabilities (XSS, CSRF, SQL injection) across all Time Spent module versions, with Drupal core unaffected. Remediation per ...

CVE-2012-5548

Cross-site scripting XSS vulnerability in the Time Spent module 6.x and 7.x for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...