Vulnerabilities > School Administration Project > School Administration > Low

DATE CVE VULNERABILITY TITLE RISK
2015-01-09 CVE-2014-9505 Cross-site Scripting vulnerability in School Administration Project School Administration
Cross-site scripting (XSS) vulnerability in the School Administration module 7.x-1.x before 7.x-1.8 for Drupal allows remote authenticated users with permission to create or edit a class node to inject arbitrary web script or HTML via a node title.
3.5