EUVD-2012-1661

Malware in sbrugna...

CVE-2012-1651

Cross-site scripting XSS vulnerability in the Submenu Tree module before 6.x-1.5 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

CVE-2012-1651

Cross-site scripting XSS vulnerability in the Submenu Tree module before 6.x-1.5 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in the Submenu Tree module before 6.x-1.5 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

CVE-2012-1651

CVE-2012-1651 affects the Drupal Submenu Tree contributed module prior to version 6.x-1.5. The vulnerability is a Cross-site Scripting (XSS) flaw caused by inadequate sanitization of user-supplied data when displaying a list of menu entries, exploitable by remote authenticated users via unspecifi...

CVE-2012-1651

Cross-site scripting XSS vulnerability in the Submenu Tree module before 6.x-1.5 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

SA-CONTRIB-2012-027 - Submenu Tree -Cross Site Scripting

CVE: CVE-2012-1651 The Submenu Tree module allows sufficiently privileged users to show a list of menu entries when displaying a node. The module does not sanitize some of the user-supplied data before displaying it, leading to a Cross Site Scripting XSS vulnerability. The vulnerability is...