3 matches found
CVE-2013-1783
Cross-site scripting XSS vulnerability in the 3 slide gallery in page--front.tpl.php in the Business theme before 7.x-1.8 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors...
CVE-2013-1783
Cross-site scripting XSS vulnerability in the 3 slide gallery in page--front.tpl.php in the Business theme before 7.x-1.8 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors...
CVE-2013-1783
The CVE-2013-1783 issue affects the Drupal Business theme prior to 7.x-1.8. The vulnerability arises from insufficient sanitization in the 3 slide gallery within page--front.tpl.php, enabling remote authenticated users with the administer themes permission to inject arbitrary script or HTML via u...