RSS   Vulnerabilities for 'Taxonomy breadcrumb'   RSS

2010-05-19
 
CVE-2010-1984

CWE-79
 
 
Cross-site scripting (XSS) vulnerability in the Taxonomy Breadcrumb module 5.x before 5.x-1.5 and 6.x before 6.x-1.1 for Drupal allows remote authenticated users, with administer taxonomy permissions, to inject arbitrary web script or HTML via the taxonomy term name in a Breadcrumb display.

 
 
CVE-2010-1976

CWE-79
 
 
Cross-site scripting (XSS) vulnerability in the Taxonomy Breadcrumb module 6.x before 6.x-1.1 for Drupal allows remote authenticated users, with administer taxonomy permissions, to inject arbitrary web script or HTML via the node title in a Breadcrumb display.

 

Copyright 2024, cxsecurity.com

 

Back to Top