Cross-site scripting (XSS) vulnerability in the Drupal Commons module 7.x-3.x prior to 7.x-3.9 for Drupal allows remote malicious users to inject arbitrary web script or HTML via vectors related to content creation and activity stream messages.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
drupal commons 7.x-3.4 |
||
drupal commons 7.x-3.8 |
||
drupal commons 7.x-3.7 |
||
drupal commons 7.x-3.3 |
||
drupal commons 7.x-3.6 |
||
drupal commons 7.x-3.5 |