XSS in Freelance-it-consultant Eu_cookie_compliance
CVE-2013-7064
Cross-site scripting (XSS) vulnerability in the EU Cookie Compliance module 7.x-1.x before 7.x-1.12 for Drupal allows remote authenticated administrators with the "Administer EU Cookie Compliance popup" permission to inject arbitrary web s…
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.009 (56.5th percentile) — read the EPSS interpretation.
Affected products
- Freelance-it-consultant Eu_cookie_compliance — versions 7.x-1.0, 7.x-1.1, 7.x-1.2
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_CONFIRM, Patch)
- cve@mitre.org (mailing-list, x_refsource_MLIST)
- cve@mitre.org (Patch, x_refsource_MISC, Vendor Advisory)
- cve@mitre.org (mailing-list, x_refsource_MLIST)