Boxes Project: >> Boxes >> 7.x-1.0 Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in the Boxes module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with administer or edit boxes permissions to inject arbitrary web script or HTML via the subject parameter.
CVSS Score
2.1
EPSS Score
0.002
Published
2013-03-27