Vulnerabilities > Marek Sotak > Rootcandy
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-11-20 | CVE-2009-4042 | Cross-Site Scripting vulnerability in Marek Sotak Rootcandy Cross-site scripting (XSS) vulnerability in the RootCandy theme 6.x before 6.x-1.5 for Drupal allows remote attackers to inject arbitrary web script or HTML via the URI. | 4.3 |