SA-CONTRIB-2015-070 - Mover - Cross Site Scripting (XSS) - Unsupported
The Mover modules provide the ability to move content between Drupal sites. The module doesn't sufficiently sanitize user supplied text in some pages, thereby exposing a Cross Site Scripting vulnerability. This vulnerability is mitigated by the fact that an attacker must have permission to...