CVE-2013-1778

CVE-2013-1778 affects Creative Theme for Drupal 7.x-1.x (before 7.x-1.2). The vulnerability arises from insufficient sanitization of user-entered content in the social icons, allowing remote authenticated users with the administer themes permission to inject arbitrary web script or HTML. Affects ...