Dismissed
by @LeSuisse Activity log
- Created automatic suggestion
- @pyrox0 removed package smiley-sans
- @pyrox0 accepted
- @LeSuisse dismissed
Cross-site scripting (XSS) vulnerability in the Smiley module 6.x-1.x versions …
Cross-site scripting (XSS) vulnerability in the Smiley module 6.x-1.x versions prior to 6.x-1.1 and Smileys module 6.x-1.x versions prior to 6.x-1.1 for Drupal allows remote authenticated users with the "administer smiley" permission to inject arbitrary web script or HTML via a smiley acronym.
References
- http://drupal.org/node/1840892 x_refsource_MISC
- http://www.openwall.com/lists/oss-security/2012/11/20/4 x_refsource_MISC
- http://drupal.org/node/1840954 x_refsource_MISC
- http://drupal.org/node/1840956 x_refsource_MISC
- http://drupal.org/node/1840892 x_refsource_MISC x_transferred
- http://www.openwall.com/lists/oss-security/2012/11/20/4 x_refsource_MISC x_transferred
- http://drupal.org/node/1840954 x_refsource_MISC x_transferred
- http://drupal.org/node/1840956 x_refsource_MISC x_transferred
- http://drupal.org/node/1840892 x_refsource_MISC
- http://www.openwall.com/lists/oss-security/2012/11/20/4 x_refsource_MISC
- http://drupal.org/node/1840954 x_refsource_MISC
- http://drupal.org/node/1840956 x_refsource_MISC
- http://drupal.org/node/1840956 x_refsource_MISC x_transferred
- http://drupal.org/node/1840892 x_refsource_MISC x_transferred
- http://www.openwall.com/lists/oss-security/2012/11/20/4 x_refsource_MISC x_transferred
- http://drupal.org/node/1840954 x_refsource_MISC x_transferred
Affected products
Smiley
- ==6.x-1.x versions prior to 6.x-1.1
Smileys
- ==6.x-1.x versions prior to 6.x-1.1