MidnightBSD

Advisories for jim_berry

CVE-2010-1303 LOW

Multiple cross-site scripting (XSS) vulnerabilities in the Taxonomy Filter module 6.x before 6.x-1.1 for Drupal allow remote authenticated users, with administer taxonomy permissions or create node permissions when free tagging is enabled, to inject arbitrary web script or HTML via vocabulary (1) names, (2) terms, and (3) filter menus.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
jim_berry taxonomy_filter 6.x-1.x-dev
jim_berry taxonomy_filter 6.x-1.0