1 results (0.002 seconds)
CVSS: 5.4EPSS: 0%CPEs: 8EXPL: 1
CVSS: 5.4EPSS: 0%CPEs: 8EXPL: 1CVE-2012-2711
https://notcve.org/view.php?id=CVE-2012-2711
27 Jun 2012 — Multiple cross-site scripting (XSS) vulnerabilities in the Taxonomy List module 6.x-1.x before 6.x-1.4 for Drupal allow remote authenticated users with create or edit taxonomy terms permissions to inject arbitrary web script or HTML via vectors related to taxonomy information. vulnerabilidad de ejecución de secuencias de comandos en sitios cruzados (XSS) en el módulo Taxonomy List v6.x-1.x anterior a v6.x-1.4 para Drupal, permite a usuarios remotos autenticados, con permisos para crear o editar términos de ... • http://drupal.org/node/1595396 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •