MidnightBSD

Advisories for bean_project

CVE-2013-4499 MEDIUM

Cross-site scripting (XSS) vulnerability in the Bean module 7.x-1.x before 7.x-1.5 for Drupal allows remote attackers to inject arbitrary web script or HTML via the bean title.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
bean_project bean 7.x-1.1
bean_project bean 7.x-1.2
bean_project bean 7.x-1.4
bean_project bean 7.x-1.0