5 matches found
EUVD-2012-1669
Malware in sbrugna...
CVE-2012-1659
Cross-site scripting XSS vulnerability in the Node Recommendation module 6.x-1.x before 6.x-1.1 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors...
Cross site scripting
Cross-site scripting XSS vulnerability in the Node Recommendation module 6.x-1.x before 6.x-1.1 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors...
CVE-2012-1659
The vulnerability CVE-2012-1659 affects the Drupal Node Recommendation module (6.x-1.x) prior to 6.x-1.1. The issue arises from insufficient filtering of user-supplied text in the Node Recommendation feature, allowing remote authenticated users with certain permissions to inject arbitrary web scr...
SA-CONTRIB-2012-034 - Node Recommendation Cross Site Scripting (XSS)
CVE: CVE-2012-1659 This module shows users other nodes that they might be interested in based on a simple logic and using taxonomy. The aim of this module is to provide sensible defaults and an easy configuration for less-technical users and to allow it to be manually overriden. The module doesn'...