3 matches found
CVE-2015-5497
Cross-site scripting XSS vulnerability in the Web Links module 6.x-2.x before 6.x-2.6 and 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors...
CVE-2015-5497
The CVE-2015-5497 issue affects Drupal’s Web Links module (Drupal 6.x-2.x family and Drupal 7.x-1.x family). The vulnerability is an XSS that occurs due to insufficient sanitization in the Web Links module, allowing remote authenticated users with certain permissions to inject arbitrary web scrip...
CVE-2015-5497
Cross-site scripting XSS vulnerability in the Web Links module 6.x-2.x before 6.x-2.6 and 7.x-1.x before 7.x-1.0 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors...