Description
Cross-site scripting (XSS) vulnerability in the Glossary module 6.x-1.x before 6.x-1.8 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "taxonomy information."
Remediation
References
Related Vulnerabilities
Drupal Other Vulnerability (CVE-2007-4063)
Atlassian Jira Missing Authorization Vulnerability (CVE-2019-15013)
Moodle Credentials Management Errors Vulnerability (CVE-2014-0008)
WordPress Plugin EELV Newsletter Multiple Vulnerabilities (4.6)
WordPress Plugin WPtouch 'wptouch_settings' Parameter Cross-Site Scripting (1.9.20)