CVE-2015-4386

The CVE-2015-4386 entry refers to a Drupal EntityBulkDelete module vulnerability (7.x-1.0) involving multiple XSS flaws in unspecified administration pages. The root cause is insufficient sanitization of user-supplied text in admin interfaces, which could allow remote attackers to inject arbitrar...