3 matches found
CVE-2015-6753
Multiple cross-site scripting XSS vulnerabilities in the Quick Edit module 7.x-1.x before 7.x-1.2 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or HTML via an 1 entity title, related to in-place editing, or a 2 node title...
CVE-2015-6753
Multiple cross-site scripting XSS vulnerabilities in the Quick Edit module 7.x-1.x before 7.x-1.2 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or HTML via an 1 entity title, related to in-place editing, or a 2 node title...
CVE-2015-6753
Drupal Quick Edit module (7.x-1.x) contains XSS vulnerabilities in versions prior to 7.x-1.2. The issue allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via an entity title (in-place editing) or a node title. Affected software is Quick Edit 7.x-1.x...