Cross-site scripting (XSS) vulnerability in the jQuery Countdown module 7.x-1.x prior to 7.x-1.1 for Drupal allows remote authenticated users with the "access administration pages" permission to inject arbitrary web script or HTML via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dennis_bruecke jquery_countdown 7.x-1.0 |