Cross site scripting

Cross-site scripting XSS vulnerability in the themeviewsbulkoperationsconfirmation function in viewsbulkoperations.module in Views Bulk Operations 5.x before 5.x-1.3 and 6.x before 6.x-1.4, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...