Panopoly Magic

DATE	CVE	VULNERABILITY TITLE	RISK
2015-02-26	CVE-2015-2086	Cross-site Scripting vulnerability in Panopoly Magic Project Panopoly Magic 7.X1.16 Cross-site scripting (XSS) vulnerability in the live preview in the Panopoly Magic module before 7.x-1.17 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a pane title. network panopoly-magic-project CWE-79	3.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.