CVE-2013-4229
Monster Menus - XSS
Title source: ruleDescription
Cross-site scripting (XSS) vulnerability in the Monster Menus module 7.x-1.x before 7.x-1.12 for Drupal allows remote authenticated users with permissions to add pages to inject arbitrary web script or HTML via a title in the page settings.
References (7)
Scores
EPSS
0.0025
EPSS Percentile
48.4%
Details
CWE
CWE-79
Status
published
Products (14)
monster_menus_project/monster_menus
monster_menus_project/monster_menus
monster_menus_project/monster_menus
monster_menus_project/monster_menus
monster_menus_project/monster_menus
monster_menus_project/monster_menus
monster_menus_project/monster_menus
monster_menus_project/monster_menus
monster_menus_project/monster_menus
monster_menus_project/monster_menus
... and 4 more
Published
Aug 21, 2013
Tracked Since
Feb 18, 2026