CVE-2013-1779

Vulnerable Component Details
Type Namespace Name Version Package URL
npm None fresh 0.5.2 pkg:npm/fresh@0.5.2?package-id=464299c2158dcf24
Vulnerability Details
ID CVE-2013-1779
Description Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Fresh theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors.
Ratings
Severity Score Method Vector Source
None None
2.1 CVSSv2 AV:N/AC:H/Au:S/C:N/I:P/A:N
Found By Anchore Grype
References / Advisories