CVE-2012-1659
Ariel Barreiro Noderecommendation - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in the Node Recommendation module 6.x-1.x before 6.x-1.1 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via unspecified vectors.
References (8)
Scores
EPSS
0.0027
EPSS Percentile
50.0%
Classification
CWE
CWE-79
Status
published
Affected Products (3)
ariel_barreiro/noderecommendation
ariel_barreiro/noderecommendation
n/a/n/a
Timeline
Published
Sep 18, 2012
Tracked Since
Feb 18, 2026