RSS   Vulnerabilities for 'Elegant theme'   RSS

2012-11-02
 
CVE-2012-4497

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in the "3 slide gallery" in the Elegant Theme module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the "administer themes" permission to inject arbitrary web script or HTML via a slide URL.

 

 >>> Vendor: Devsaran 11 Products
Elegant theme
Creative
Fresh
Best responsive
Professional theme
Responsive blog
Business
Clean theme
Responsive
Company
Corporate


Copyright 2024, cxsecurity.com

 

Back to Top