CVE-2015-3344
The CVE-2015-3344 issue affects the Drupal Course module (versions 6.x-1.x prior to 6.x-1.2 and 7.x-1.x prior to 7.x-1.4). The underlying problem is insufficient filtering of node title displays, enabling remote authenticated users to inject arbitrary script/HTML via a node title (XSS). Affected ...