Multiple cross-site scripting (XSS) vulnerabilities in revisioning_theme.inc in the Taxonomy module in the Revisioning module 6.x-3.13 and other versions before 6.x-3.14 for Drupal allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via the (1) tags or (2) term parameters.
2012-02-14T00:55:01.113
2025-04-11T00:51:21.963
Deferred
CVSSv2: 2.1 (LOW)
AV:N/AC:H/Au:S/C:N/I:P/A:N
3.9
2.9
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | rik_de_boer | revisioning | 6.x-3.13 | Yes |
Application | drupal | drupal | * | No |