Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Professional theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2013-03-27T21:00:00Z

Updated: 2024-09-17T01:40:42.051Z

Reserved: 2013-02-19T00:00:00Z

Link: CVE-2013-1781

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2013-03-27T21:55:02.923

Modified: 2024-11-21T01:50:22.617

Link: CVE-2013-1781

cve-icon Redhat

No data.