CVE-2015-2088

Name of the Vulnerable Software and Affected Versions Drupal Term Queue module versions prior to 6.x-1.1

Description A cross-site scripting (XSS) issue exists in the administration pages of the Term Queue module, allowing remote attackers to inject arbitrary web script or HTML. This can be achieved via unknown vectors.

Recommendations For versions prior to 6.x-1.1, update to version 6.x-1.1 or later to resolve the issue.