CVE-2014-8319
CVE-2014-8319 describes a cross-site scripting (XSS) vulnerability in the Drupal Easy Social module (version 7.x-2.x prior to 7.x-2.11). The issue arises from insufficient validation of block titles when users create a custom block via the module’s admin interface, allowing remote authenticated u...