4 matches found
CVE-2014-9362
CVE-2014-9362 : A cross-site scripting (XSS) vulnerability in the Drupal contributed module Meta tags quick (7.x-2.x) up to version 7.x-2.7 (not affecting Drupal core) allows remote authenticated users who have the Edit path based meta tags permission to inject arbitrary HTML/JS via the path-base...
CVE-2014-9363
Open redirect vulnerability CVE-2014-9363 affects Drupal Meta tags quick module (7.x-2.x) prior to 7.x-2.8. The issue allows remote authenticated users to redirect others to arbitrary sites via the destination parameter in the path-based meta tag editing form. Impact is described as enabling phis...
CVE-2011-5030
Cross-site scripting XSS vulnerability in the Meta tags quick module 7.x-2.x before 7.x-2.3 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors, probably related to "names of entity bundles."...
CVE-2011-5030
The CVE refers to a Cross-site scripting (XSS) vulnerability in the Drupal Meta tags quick module (7.x-2.x) prior to version 7.x-2.3. It allows remote authenticated users with certain permissions to inject arbitrary scripts/HTML via unspecified vectors (likely related to entity bundle names). Rem...