EUVD-2015-7776

Malware in sbrugna...

Cross site scripting

Cross-site scripting XSS vulnerability in the Taxonomy Find module 6.x-2.x through 6.x-1.2 and 7.x-2.x through 7.x-1.0 in Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via taxonomy vocabulary and term names...

CVE-2015-7878

CVE-2015-7878 affects the Drupal Taxonomy Find module (6.x-2.x up to 6.x-1.2; 7.x-2.x up to 7.x-1.0). Root cause: insufficient sanitization of taxonomy vocabulary/term names leads to cross-site scripting (XSS) via remote authenticated users with certain permissions. Impact: arbitrary web script/H...

CVE-2015-7878

Cross-site scripting XSS vulnerability in the Taxonomy Find module 6.x-2.x through 6.x-1.2 and 7.x-2.x through 7.x-1.0 in Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via taxonomy vocabulary and term names...

Unspecified vulnerability in Drupal Taxonomy Find module

Drupal is a free, open source content management system developed in PHP and maintained by the Drupal community.Taxonomy Find is one of the modules that provides a search interface for finding categories. A security vulnerability exists in the Drupal Taxonomy Find module. No details of the...

Taxonomy Find - Unsupported - SA-CONTRIB-2015-153

This module enables you to add a simple search interface to lookup taxonomy terms by name. The module doesn't sufficiently sanitize output of taxonomy vocabulary names and term names. This vulnerability is mitigated by the fact that an attacker must have a role with the permission "Administer...