3 matches found
EUVD-2014-5343
Malware in sbrugna...
CVE-2014-5456
CVE-2014-5456 relates to the Drupal Social Stats module for 7.x-1.x. The vulnerability is a persistent XSS caused by insufficient filtering of text stored in the module’s configuration, exploitable by remote authenticated users who have the "[Content Type]: Create new content" permission. Affecte...
CVE-2014-5456
Cross-site scripting XSS vulnerability in the Social Stats module before 7.x-1.5 for Drupal allows remote authenticated users with the "Content Type: Create new content" permission to inject arbitrary web script or HTML via vectors related to the configuration...