EUVD-2015-3430

Malware in sbrugna...

CVE-2015-3385

Cross-site scripting XSS vulnerability in the Taxonomy Path module before 7.x-1.2 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via the "Link to path" field formatter...

Cross site scripting

Cross-site scripting XSS vulnerability in the Taxonomy Path module before 7.x-1.2 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via the "Link to path" field formatter...

CVE-2015-3385

Cross-site scripting XSS vulnerability in the Taxonomy Path module before 7.x-1.2 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via the "Link to path" field formatter...

CVE-2015-3385

CVE-2015-3385 affects Drupal’s Taxonomy Path module for 7.x versions prior to 7.x-1.2. The vulnerability is a reflected XSS due to insufficient sanitization in the “Link to path” field formatter, allowing remote authenticated users to inject arbitrary script/html. The public advisories corroborat...

Drupal Taxonomy Path Module Cross-Site Scripting Vulnerability

Drupal is written using the PHP language open source content management framework , which consists of a content management system and PHP development framework together . A cross-site scripting vulnerability exists in the Drupal Taxonomy Path module due to the program failing to properly filter...

SA-CONTRIB-2015-044 - Taxonomy Path - Cross Site Scripting (XSS)

Taxonomy Path module enables you to create custom links to taxonomy terms within a display mode. The module doesn't sufficiently sanitize user provided text in the provided "Link to path" field formatter, thereby exposing a Cross Site Scripting vulnerability. This vulnerability is mitigated by th...