Cross-site scripting (XSS) vulnerability in vud_term.module in the Vote Up/Down module 6.x-2.x before 6.x-2.8 and 6.x-3.x before 6.x-3.1 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via taxonomy terms.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2012-09-20T00:00:00Z

Updated: 2024-09-16T18:49:47.045Z

Reserved: 2012-03-12T00:00:00Z

Link: CVE-2012-1627

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2012-09-20T00:55:04.843

Modified: 2024-11-21T01:37:21.173

Link: CVE-2012-1627

cve-icon Redhat

No data.