Multiple cross-site scripting (XSS) vulnerabilities in vwrooms\templates\logout.tpl.php in the VideoWhisper Webcam plugins for Drupal 7.x allow remote malicious users to inject arbitrary web script or HTML via the (1) module or (2) message parameter to index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
videowhisper videowhisper 7.x-1.0 |
||
videowhisper videowhisper 7.x-1.x |
||
videowhisper videowhisper 7.x-1.3 |
||
videowhisper videowhisper 7.x-1.1 |