1 results (0.001 seconds)
CVSS: 5.4EPSS: 0%CPEs: 3EXPL: 0
CVSS: 5.4EPSS: 0%CPEs: 3EXPL: 0CVE-2010-1303
https://notcve.org/view.php?id=CVE-2010-1303
08 Apr 2010 — Multiple cross-site scripting (XSS) vulnerabilities in the Taxonomy Filter module 6.x before 6.x-1.1 for Drupal allow remote authenticated users, with administer taxonomy permissions or create node permissions when free tagging is enabled, to inject arbitrary web script or HTML via vocabulary (1) names, (2) terms, and (3) filter menus. Múltiples vulnerabilidades de ejecución de secuencias de comandos en sitios cruzados (XSS) en el módulo Taxonomy Filter v6.x anterior a v6.x-1.1 para Drupal, permite a usuari... • http://drupal.org/node/622096 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •