2 matches found
CVE-2015-5487
The CVE-2015-5487 issue affects the Camtasia Relay module for Drupal (camtasia_relay), specifically versions 6.x-2.x prior to 6.x-3.2 and 7.x-2.x prior to 7.x-1.3. The root cause is insufficient sanitization of user input under the meta access tab, allowing remote authenticated users with the "vi...
Camtasia Relay - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-100
This module enables you to integrate your Drupal site with TechSmith Relay software. The module doesn't sufficiently sanitize user input under the meta access tab. This vulnerability is mitigated by the fact that an attacker must have a role with the permission "view meta information". CVE...