MidnightBSD

Advisories for quick_edit_project

CVE-2015-6753 LOW

Multiple cross-site scripting (XSS) vulnerabilities in the Quick Edit module 7.x-1.x before 7.x-1.2 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or HTML via an (1) entity title, related to in-place editing, or a (2) node title.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
quick_edit_project quick_edit 7.x-1.0
quick_edit_project quick_edit 7.x-1.1