Security Advisory

CVE-2013-6387

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-12-24 20:00:00

Last updated 2024-08-06 17:39:01

Assigner redhat

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in the Image module in Drupal 7.x before 7.24 allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via the description field.

← Browse all CVEs View on cve.org ↗