RSS   Vulnerabilities for 'Professional theme'   RSS

2013-03-27
 
CVE-2013-1781

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Professional theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors.

 

 >>> Vendor: Devsaran 11 Products
Elegant theme
Creative
Fresh
Best responsive
Professional theme
Responsive blog
Business
Clean theme
Responsive
Company
Corporate


Copyright 2024, cxsecurity.com

 

Back to Top