Hashmarkconsulting » Controlpanel : Security Vulnerabilities, CVEs,
Cross-site scripting (XSS) vulnerability in the Control Panel module 5.x through 5.x-1.5 and 6.x through 6.x-1.2 for Drupal allows remote authenticated users, with "administer blocks" privileges, to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
3.5
EPSS Score
0.11%
Published
2010-03-25
Updated
2017-08-17
1 vulnerabilities found