CVE-2013-1783
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in page--front.tpl.php in the Business theme before 7.x-1.8 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors.
Cross-site Scripting
Vendor | Product | Version |
---|---|---|
devsaran | business | 𝑥 ≤ 7.x-1.8 |
devsaran | business | 7.x-1.0 |
devsaran | business | 7.x-1.1 |
devsaran | business | 7.x-1.2 |
devsaran | business | 7.x-1.3 |
devsaran | business | 7.x-1.4 |
devsaran | business | 7.x-1.5 |
devsaran | business | 7.x-1.6 |
devsaran | business | 7.x-1.7 |
devsaran | business | 7.x-1.x |
Common Weakness Enumeration