CVE-2014-8075

Name of the Vulnerable Software and Affected Versions Drupal Tribune module versions 6.x-1.x through 7.x-3.x

Description A cross-site scripting (XSS) issue exists, allowing remote authenticated users with specific permissions to inject arbitrary web script or HTML via a node title.

Recommendations For versions 6.x-1.x through 7.x-3.x, update to a version that includes a fix for this issue, as using outdated versions poses a significant risk. At the moment, there is no information about a newer version that contains a fix for this vulnerability.