2 matches found
CVE-2013-1779
Cross-site scripting XSS vulnerability in the 3 slide gallery in the Fresh theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors...
CVE-2013-1779
The vulnerability CVE-2013-1779 affects the Fresh Theme for Drupal, versions prior to 7.x-1.4. The issue arises from the 3 slide gallery not properly sanitizing user-entered content, enabling XSS by remote authenticated users with the administer themes permission to inject arbitrary script or HTM...