3 matches found
CVE-2013-0323
Cross-site scripting XSS vulnerability in the Display Suite module 7.x-1.x before 7.x-1.7 and 7.x-2.x before 7.x-2.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via the author field...
CVE-2013-0323
The CVE-2013-0323 vulnerability affects the Drupal Display Suite contributed module (7.x-1.x before 7.x-1.7 and 7.x-2.x before 7.x-2.1). The root cause is insufficient sanitization of user data in the author field, enabling remote XSS. Impact is arbitrary script/HTML execution in pages rendering ...
CVE-2013-0323
Cross-site scripting XSS vulnerability in the Display Suite module 7.x-1.x before 7.x-1.7 and 7.x-2.x before 7.x-2.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via the author field...