EUVD-2015-4370

Malware in sbrugna...

CVE-2015-4347

Cross-site scripting XSS vulnerability in the inLinks Integration module for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified path arguments...

CVE-2015-4347

CVE-2015-4347 describes a cross-site scripting (XSS) vulnerability in Drupal’s inLinks Integration module. The issue arises from insufficient sanitization of user input in some path arguments, allowing remote attackers to inject arbitrary web script or HTML. The advisory indicates the vulnerabili...

Drupal inLinks Integration Module Cross-Site Scripting Vulnerability

Drupal is a free, open-source content management system developed in PHP and maintained by the Drupal community. inLinks Integration is one of the modules that sells goods through backlinks. A cross-site scripting vulnerability exists in the Drupal inLinks Integration module due to the program's...

SA-CONTRIB-2015-056 - inLinks Integration - Cross Site Scripting (XSS) - Unsupported

inLinks Integration module enables you to use inLinks product from Text Link Ads third-party service. The module doesn't sufficiently sanitize user input in some path arguments, thereby exposing a Cross Site Scripting vulnerability. CVE identifiers issued CVE-2015-4347 Versions affected All...