Beta

Report

Entity API < 7.x-1.6 is vulnerable to Authenticated Cross Site Scripting (XSS) vulnerability

Authenticated
Published
2015-02-24

Authenticated Cross Site Scripting (XSS) vulnerability

CVE

https://www.cve.org/CVERecord?id=CVE-2015-2197

CVSS

Score:4.3

Severity:Medium

Version:< 7.x-1.6

There is a patch available in v7.x-1.6 and we strongly recommend you update to this version as soon as possible.