Mixpanel Project » Mixpanel : Security Vulnerabilities, CVEs,
Cross-site scripting (XSS) vulnerability in the Mixpanel module 6.x-1.x before 6.x-1.1 in Drupal allows remote authenticated users with the "access administration pages" permission to inject arbitrary web script or HTML via the Maxpanel token.
Max CVSS
2.1
EPSS Score
0.11%
Published
2012-12-26
Updated
2013-02-26
1 vulnerabilities found