CVE-2013-2177

Kristof DE Jaeger Display Suite - XSS

Title source: rule

Description

Cross-site scripting (XSS) vulnerability in the Display Suite module 7.x-1.x before 7.x-1.7 and 7.x-2.x before 7.x-2.3 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via an entity bundle label.

References (5)

Scores

EPSS 0.0025
EPSS Percentile 47.9%

Details

CWE
CWE-79
Status published
Products (17)
kristof_de_jaeger/display_suite
kristof_de_jaeger/display_suite
kristof_de_jaeger/display_suite
kristof_de_jaeger/display_suite
kristof_de_jaeger/display_suite
kristof_de_jaeger/display_suite
kristof_de_jaeger/display_suite
kristof_de_jaeger/display_suite
kristof_de_jaeger/display_suite
kristof_de_jaeger/display_suite
... and 7 more
Published Jun 25, 2013
Tracked Since Feb 18, 2026