3 matches found
CVE-2014-9364
Cross-site scripting XSS vulnerability in the Unified Login form in the LoginToboggan module 7.x-1.x before 7.x-1.4 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2014-9364
CVE-2014-9364 corresponds to a Cross-Site Scripting (XSS) vulnerability in the Unified Login form of the Drupal LoginToboggan module (7.x-1.x) older than 7.x-1.4. The issue allows remote attackers to inject arbitrary web script/HTML via unspecified vectors. The Drupal advisory SA-CONTRIB-2014-069...
CVE-2014-9364
Cross-site scripting XSS vulnerability in the Unified Login form in the LoginToboggan module 7.x-1.x before 7.x-1.4 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...