CVE-2015-6753

Drupal Quick Edit module (7.x-1.x) contains XSS vulnerabilities in versions prior to 7.x-1.2. The issue allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via an entity title (in-place editing) or a node title. Affected software is Quick Edit 7.x-1.x...