Cross-site scripting (XSS) vulnerability in the AddThis Button module 5.x before 5.x-2.2 and 6.x before 6.x-2.9 for Drupal allows remote authenticated users, with administer addthis privileges, to inject arbitrary web script or HTML via unspecified vectors.
Max CVSS
2.1
EPSS Score
0.09%
Published
2010-04-26
Updated
2010-04-27
1 vulnerabilities found