Vulnerabilities > Drupal > Doubleclick FOR Publishers > Low

DATE CVE VULNERABILITY TITLE RISK
2014-10-13 CVE-2014-8748 Cross-Site Scripting vulnerability in Drupal Doubleclick FOR Publishers 7.X1.0/7.X1.1
Cross-site scripting (XSS) vulnerability in the Google Doubleclick for Publishers (DFP) module 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the "administer dfp" permission to inject arbitrary web script or HTML via a slot name.
network
drupal CWE-79
3.5
3.5