6 matches found
EUVD-2012-1663
Malware in sbrugna...
CVE-2012-1653
Cross-site scripting XSS vulnerability in the Taxonomy Views Integrator TVI module 6.x-1.x before 6.x-1.3 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, related to "views pages."...
CVE-2012-1653
The CVE-2012-1653 issue affects the Taxonomy Views Integrator (TVI) module for Drupal 6.x-1.x before 6.x-1.3. The vulnerability arises from insufficient filtering of user-supplied text on views pages, enabling XSS by authenticated users. Impact is limited to partial integrity of data and arbitrar...
CVE-2012-1653
Cross-site scripting XSS vulnerability in the Taxonomy Views Integrator TVI module 6.x-1.x before 6.x-1.3 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors, related to "views pages."...
SA-CONTRIB-2012-029 - Taxonomy Views Integrator - Cross Site Scripting (XSS)
CVE: CVE-2012-1653 The Taxonomy Views Integrator allows selective overriding of taxonomy terms and/or vocabulary with the view of your choice. Using TVI you can easily create custom views to output all terms in X vocabulary. The module doesn't sufficiently filter user supplied text on views pages...
SA-CONTRIB-2011-038 - Taxonomy Views Integrator - Cross Site Scripting
This module enables you to override whole vocabularies or individual terms with the View of your choice. The module did not filter user entered term descriptions for Cross Site Scripting XSS injections. This vulnerability is mitigated by the fact that an attacker must have a role with the...