CVE-2015-6754
31.08.2015, 19:59
Cross-site scripting (XSS) vulnerability in the administration interface in the Path Breadcrumbs module 7.x-3.x before 7.x-3.3 for Drupal allows remote authenticated users with the "Administer Path Breadcrumbs" permission to inject arbitrary web script or HTML via unspecified vectors.
| Vendor | Product | Version |
|---|---|---|
| path_breadcrumbs_project | path_breadcrumbs | 7.x-3.0:x |
| path_breadcrumbs_project | path_breadcrumbs | 7.x-3.1:x |
| path_breadcrumbs_project | path_breadcrumbs | 7.x-3.2:x |
𝑥
= Vulnerable software versions