CVE-2013-1781
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Professional theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors.
Cross-site Scripting
Vendor | Product | Version |
---|---|---|
devsaran | professional_theme | 𝑥 ≤ 7.x-1.3 |
devsaran | professional_theme | 7.x-1.0 |
devsaran | professional_theme | 7.x-1.1 |
devsaran | professional_theme | 7.x-1.2 |
devsaran | professional_theme | 7.x-1.x |
Common Weakness Enumeration