6 matches found
EUVD-2014-7828
Malware in sbrugna...
CVE-2014-7979
Cross-site scripting XSS vulnerability in the SimpleCorp theme 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "administer themes" permission to inject arbitrary web script or HTML via vectors related to theme settings...
Cross site scripting
Cross-site scripting XSS vulnerability in the SimpleCorp theme 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "administer themes" permission to inject arbitrary web script or HTML via vectors related to theme settings...
CVE-2014-7979
Cross-site scripting XSS vulnerability in the SimpleCorp theme 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "administer themes" permission to inject arbitrary web script or HTML via vectors related to theme settings...
CVE-2014-7979
CVE-2014-7979 is an XSS vulnerability in the SimpleCorp Drupal theme (7.x-1.x) affecting 7.x-1.0 prior to 7.x-1.1. The issue allows remote authenticated users with the administer themes permission to inject arbitrary script/HTML via theme settings. Exploitation details are not provided in the ini...
SA-CONTRIB-2014-038 - SimpleCorp theme - Cross Site Scripting
SimpleCorp theme is a free responsive Drupal theme. The SimpleCorp theme does not properly sanitize theme settings before they are used in the output of a page. This vulnerability is mitigated by the fact that an attacker must have a role with the permission "administer themes". CVE identifiers...