Description
Cross-site scripting (XSS) vulnerability in the Color module in Drupal 7.x before 7.24 allows remote attackers to inject arbitrary web script or HTML via vectors related to CSS.
Remediation
References
Related Vulnerabilities
PHP Other Vulnerability (CVE-2019-11044)
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2022-28129)
Oracle Application Server Improper Authentication Vulnerability (CVE-2002-0563)
WordPress Plugin WP-Recall-Registration, Profile, Commerce & More Security Bypass (16.26.6)
WordPress Plugin Yoast SEO Cross-Site Request Forgery (3.3.1)