Description
Cross-site scripting (XSS) vulnerability in the Finder module 6.x-1.x before 6.x-1.26, 7.x-1.x, and 7.x-2.x before 7.x-2.0-alpha8 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the "checkbox and radio button functionalities."
Exploits
No known exploits found for this CVE.
Search Exploit-DBReferences
secalert@redhat.com
http://drupal.org/node/1432318secalert@redhat.com
http://drupal.org/node/1432320secalert@redhat.com
http://drupalcode.org/project/finder.git/commit/13e2d0csecalert@redhat.com
http://drupalcode.org/project/finder.git/commit/58443aasecalert@redhat.com
http://secunia.com/advisories/47941secalert@redhat.com
http://secunia.com/advisories/47943secalert@redhat.com
http://www.madirish.net/content/drupal-finder-6x-19-xss-and-remote-code-execution-vulnerabilitiessecalert@redhat.com
http://www.openwall.com/lists/oss-security/2012/03/16/9secalert@redhat.com
http://www.openwall.com/lists/oss-security/2012/03/19/9secalert@redhat.com
http://www.openwall.com/lists/oss-security/2012/04/07/1secalert@redhat.com
http://www.osvdb.org/79015secalert@redhat.com
https://drupal.org/node/1432970secalert@redhat.com
https://exchange.xforce.ibmcloud.com/vulnerabilities/73110af854a3a-2127-422b-91ae-364da2661108
http://drupal.org/node/1432318af854a3a-2127-422b-91ae-364da2661108
http://drupal.org/node/1432320af854a3a-2127-422b-91ae-364da2661108
http://drupalcode.org/project/finder.git/commit/13e2d0caf854a3a-2127-422b-91ae-364da2661108
http://drupalcode.org/project/finder.git/commit/58443aaaf854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/47941af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/47943af854a3a-2127-422b-91ae-364da2661108
http://www.madirish.net/content/drupal-finder-6x-19-xss-and-remote-code-execution-vulnerabilitiesaf854a3a-2127-422b-91ae-364da2661108
http://www.openwall.com/lists/oss-security/2012/03/16/9af854a3a-2127-422b-91ae-364da2661108
http://www.openwall.com/lists/oss-security/2012/03/19/9af854a3a-2127-422b-91ae-364da2661108
http://www.openwall.com/lists/oss-security/2012/04/07/1af854a3a-2127-422b-91ae-364da2661108
http://www.osvdb.org/79015af854a3a-2127-422b-91ae-364da2661108
https://drupal.org/node/1432970af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/73110