Back to search
CVE-2013-7064
Published: Apr 29, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in the EU Cookie Compliance module 7.x-1.x before 7.x-1.12 for Drupal allows remote authenticated administrators with the "Administer EU Cookie Compliance popup" permission to inject arbitrary web script or HTML via unspecified configuration values.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://drupal.org/node/2139875
x_refsource_CONFIRM
[oss-security] 20131211 Re: CVE request for Drupal core, and contributed modules
mailing-list
x_refsource_MLIST
https://drupal.org/node/2140123
x_refsource_MISC
[oss-security] 20131206 CVE request for Drupal core, and contributed modules
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now