2 matches found
CVE-2015-4380
Cross-site scripting XSS vulnerability in the Linear Case module 6.x-1.x before 6.x-1.3 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors...
CVE-2015-4380
CVE-2015-4380 affects Drupal via the Linear Case module (6.x-1.x) prior to 6.x-1.3. Root cause: insufficient sanitization of user-supplied input in certain Linear Case pages. Impact: XSS vulnerability that could be exploited by remote authenticated users with specific permissions to inject arbitr...