CVE-2012-1628

Cross-site scripting XSS vulnerability in the SuperCron module for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in the SuperCron module for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

CVE-2012-1628

Cross-site scripting XSS vulnerability in the SuperCron module for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...

CVE-2012-1628

The CVE-2012-1628 issue affects the Drupal ecosystem via the SuperCron contributed module. It is described as a cross‑site scripting (XSS) vulnerability in SuperCron that allows remote authenticated users to inject arbitrary web script or HTML through unspecified vectors. The connected Drupal sec...

SA-CONTRIB-2012-006 XSS and CSRF in Multiple Modules - Supercron, Taxotouch, Admin:hover, Taxonomy Navigator no longer supported

CVE: CVE-2012-1628 SuperCron is a complete replacement for Drupal's built-in Cron functionality. The module is vulnerable to Cross Site Scripting. The vulnerability is mitigated by an attacker needing to gain an account with "access administration pages" permission. CVE: CVE-2012-1629 Taxotouch...

Drupal 6.22 / SuperCron 6.x-1.3 Cross Site Scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Description of Vulnerability: - ----------------------------- Drupal http://drupal.org is a robust content management system CMS written in PHP and MySQL. The Drupal SuperCron module https://drupal.org/project/supercron, created by 63 Reasons...