CVE-2013-0324
CVE-2013-0324 concerns the Drupal Menu Reference module. The vulnerability affects Menu Reference 7.x-1.x prior to 7.x-1.0, where the rendered links formatter does not escape HTML in the menu link title. This enables remote authenticated users with the credential to Administer menus and menu item...