6 matches found
EUVD-2008-3087
Malware in sbrugna...
Cross site scripting
Cross-site scripting XSS vulnerability in the Tinytax module aka Tinytax taxonomy block 5.x before 5.x-1.10-1 for Drupal allows remote authenticated users to inject arbitrary web script or HTML, probably by creating a crafted taxonomy term...
CVE-2008-3097
Cross-site scripting XSS vulnerability in the Tinytax module aka Tinytax taxonomy block 5.x before 5.x-1.10-1 for Drupal allows remote authenticated users to inject arbitrary web script or HTML, probably by creating a crafted taxonomy term...
CVE-2008-3097
Cross-site scripting XSS vulnerability in the Tinytax module aka Tinytax taxonomy block 5.x before 5.x-1.10-1 for Drupal allows remote authenticated users to inject arbitrary web script or HTML, probably by creating a crafted taxonomy term...
CVE-2008-3097
CVE-2008-3097 affects the Drupal Tinytax module (Tinytax taxonomy block) versions 5.x prior to 5.x-1.10-1. The vulnerability is an XSS flaw where remote authenticated users can inject arbitrary web script or HTML by crafting a taxonomy term. The impact is cross-site scripting with no listed explo...
SA-2008-042 - Tinytax - Cross site scripting
The Tinytax taxonomy block displays a vocabulary as a tree within a block. The module displays certain values without appropriate filtering. Malicious users with the permission to create taxonomy terms are able to exploit this issue and insert arbitrary HTML and script code into pages. Such a cro...