3 matches found
CVE-2013-1887
Multiple cross-site scripting XSS vulnerabilities in the Views module 7.x-3.x before 7.x-3.6 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or HTML via certain view configuration fields...
CVE-2013-1887
Multiple cross-site scripting XSS vulnerabilities in the Views module 7.x-3.x before 7.x-3.6 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or HTML via certain view configuration fields...
CVE-2013-1887
The CVE affects Drupal's Views module (7.x-3.x) prior to 7.x-3.6. The vulnerability arises from insufficient sanitization of certain view configuration fields, enabling remote authenticated users with specific permissions to inject arbitrary web script or HTML (XSS). The attacker would exploit th...