EUVD-2015-3421

Malware in sbrugna...

Drupal Quizzler Module Cross-Site Scripting Vulnerability

The Drupal Quizzler module is a Drupal module for creating online tests. A cross-site scripting vulnerability exists in Drupal Quizzler module versions prior to 7-x.1.16. This allows an authenticated, remote attacker to inject arbitrary web script or HTML via a node header...

CVE-2015-3376

Cross-site scripting XSS vulnerability in the Quizzler module before 7-x.1.16 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a node title...

Cross site scripting

Cross-site scripting XSS vulnerability in the Quizzler module before 7-x.1.16 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a node title...

CVE-2015-3376

Cross-site scripting XSS vulnerability in the Quizzler module before 7-x.1.16 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a node title...

CVE-2015-3376

The CVE-2015-3376 entry relates to the Drupal Quizzler module (pre-7.x-1.16). The vulnerability is an XSS flaw that allows an authenticated remote user to inject arbitrary script/HTML via a node title. Affected versions are all prior to 7.x-1.16; the exploitation context is limited to module usag...

SA-CONTRIB-2015-027 - Quizzler - Cross Site Scripting (XSS)

The Quizzler module allows you to create online quizzes and tests. Quizzes are nodes with questions attached. The module does not sanitize user input in the node title when displaying it on the page, allowing a malicious user to inject code, a Cross Site Scripting XSS attack. This vulnerability i...