MidnightBSD

Advisories for michael_nichols

CVE-2010-1976 LOW

Cross-site scripting (XSS) vulnerability in the Taxonomy Breadcrumb module 6.x before 6.x-1.1 for Drupal allows remote authenticated users, with administer taxonomy permissions, to inject arbitrary web script or HTML via the node title in a Breadcrumb display.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
michael_nichols taxonomy_breadcrumb 6.x-1.0
michael_nichols taxonomy_breadcrumb 6.x-1.x
michael_nichols taxonomy_breadcrumb 6.x-0.1
CVE-2010-1984 LOW

Cross-site scripting (XSS) vulnerability in the Taxonomy Breadcrumb module 5.x before 5.x-1.5 and 6.x before 6.x-1.1 for Drupal allows remote authenticated users, with administer taxonomy permissions, to inject arbitrary web script or HTML via the taxonomy term name in a Breadcrumb display.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
michael_nichols taxonomy_breadcrumb 5.x-1.0
michael_nichols taxonomy_breadcrumb 6.x-1.0
michael_nichols taxonomy_breadcrumb 5.x-1.1
michael_nichols taxonomy_breadcrumb 6.x-1.x
michael_nichols taxonomy_breadcrumb 5.x-1.3
michael_nichols taxonomy_breadcrumb 6.x-0.1
michael_nichols taxonomy_breadcrumb 5.x-1.2