Vulnerabilities > Authoring Html
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-06-27 | CVE-2012-2725 | Permissions, Privileges, and Access Controls vulnerability in Authoring Html 6.X-1.0 classes/Filter/WhitelistedExternalFilter.php in the Authoring HTML module 6.x-1.x before 6.x-1.1 for Drupal does not properly validate sources with the host white list, which allows remote authenticated users to bypass intended access restrictions and conduct cross-site scripting (XSS) attacks. | 3.5 |