CVE-2012-0914
EUVD-2012-093724.01.2012, 18:55
Cross-site scripting (XSS) vulnerability in display_renderers/panels_renderer_editor.class.php in the admin view in the Panels module 6.x-2.x before 6.x-3.10 and 7.x-3.x before 7.x-3.0 for Drupal allows remote authenticated users with certain privileges to inject arbitrary web script or HTML via the Region title.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| earl_miles | panels | 6.x-3.0:x |
| earl_miles | panels | 6.x-3.0:x |
| earl_miles | panels | 6.x-3.0:x |
| earl_miles | panels | 6.x-3.0:x |
| earl_miles | panels | 6.x-3.0:x |
| earl_miles | panels | 6.x-3.0:x |
| earl_miles | panels | 6.x-3.0:x |
| earl_miles | panels | 6.x-3.0:x |
| earl_miles | panels | 6.x-3.0:x |
| earl_miles | panels | 6.x-3.1:x |
| earl_miles | panels | 6.x-3.2:x |
| earl_miles | panels | 6.x-3.3:x |
| earl_miles | panels | 6.x-3.4:x |
| earl_miles | panels | 6.x-3.5:x |
| earl_miles | panels | 6.x-3.7:x |
| earl_miles | panels | 6.x-3.8:x |
| earl_miles | panels | 6.x-3.9:x |
| earl_miles | panels | 6.x-3.x:x |
| earl_miles | panels | 7.x-3.0:x |
| earl_miles | panels | 7.x-3.0:x |
| earl_miles | panels | 7.x-3.0:x |
| earl_miles | panels | 7.x-3.x:x |
𝑥
= Vulnerable software versions
References