CVE-2010-3022
CVE-2010-3022 is a cross-site scripting (XSS) vulnerability in the Drupal Devel module's Performance logging component. Affected versions are Drupal Devel module 5.x prior to 5.x-1.3 and 6.x prior to 6.x-1.21. The issue allows remote authenticated users, granted add url aliases and report access ...