Cross-site scripting (XSS) vulnerability in the Stickynote module 7.x before 7.x-1.3 for Drupal allows remote authenticated users with permission to create or edit a stickynote to inject arbitrary web script or HTML via note text on the admin listing page.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-09-11T17:00:00

Updated: 2024-08-06T08:06:30.777Z

Reserved: 2015-10-21T00:00:00

Link: CVE-2015-7879

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-09-11T17:29:00.280

Modified: 2024-11-21T02:37:35.417

Link: CVE-2015-7879

cve-icon Redhat

No data.