1 results (0.008 seconds)

CVSS: 4.3EPSS: 0%CPEs: 8EXPL: 0

Multiple cross-site scripting (XSS) vulnerabilities in the Printfriendly module 6.x before 6.x-1.6 for Drupal allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. Multiples vulnerabilidades de ejecución de comandos en sitios cruzados(XSS) en el módulo de Drupal "Printfriendly" v6.x antes de v6.x-1.6 permiten a atacantes remotos inyectar HTML o scripts web a través de vectores no especificados. • http://drupal.org/node/636670 http://drupal.org/node/636678 http://osvdb.org/60281 http://secunia.com/advisories/37441 http://www.securityfocus.com/bid/37059 https://exchange.xforce.ibmcloud.com/vulnerabilities/54348 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •