5 matches found
CVE-2015-7980
Cross-site scripting XSS vulnerability in the Compass Rose module 6.x-1.x before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to "embedding a JavaScript library from an external source that was not reliable."...
CVE-2015-7980
Cross-site scripting XSS vulnerability in the Compass Rose module 6.x-1.x before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to "embedding a JavaScript library from an external source that was not reliable."...
CVE-2015-7980
Cross-site scripting XSS vulnerability in the Compass Rose module 6.x-1.x before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to "embedding a JavaScript library from an external source that was not reliable."...
CVE-2015-7980
CVE-2015-7980 affects the Compass Rose module for Drupal (6.x-1.x)—pre-6.x-1.1. The vulnerability is a cross-site scripting (XSS) flaw introduced by embedding a JavaScript library from an external source that was not reliable, enabling remote attackers to inject arbitrary script/HTML via unspecif...
Compass Rose - Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2015-138
Compass Rose module provides a type of CCK field that allows to represent the most common orientations North, North-East, East, South-East, South, South-West, West and North-West. The module was embedding a JavaScript library from an external source that was not reliable, thereby exposing the sit...