Cross-site scripting (XSS) vulnerability in the 3 slide gallery in page--front.tpl.php in the Business theme prior to 7.x-1.8 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
devsaran business 7.x-1.4 |
||
devsaran business 7.x-1.3 |
||
devsaran business 7.x-1.2 |
||
devsaran business |
||
devsaran business 7.x-1.7 |
||
devsaran business 7.x-1.x |
||
devsaran business 7.x-1.1 |
||
devsaran business 7.x-1.0 |
||
devsaran business 7.x-1.6 |
||
devsaran business 7.x-1.5 |
Vulmon