Unrated severityNVD Advisory· Published Aug 31, 2012· Updated Jun 16, 2026
CVE-2012-2083
CVE-2012-2083
Description
Cross-site scripting (XSS) vulnerability in the fusion_core_preprocess_page function in fusion_core/template.php in the Fusion module before 6.x-1.13 for Drupal allows remote attackers to inject arbitrary web script or HTML via the q parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:a:fusiondrupalthemes:fusion:*:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:fusiondrupalthemes:fusion:*:*:*:*:*:*:*:*range: <=6.x-1.12
- cpe:2.3:a:fusiondrupalthemes:fusion:6.x-1.0:*:*:*:*:*:*:*
- cpe:2.3:a:fusiondrupalthemes:fusion:6.x-1.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:fusiondrupalthemes:fusion:6.x-1.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:fusiondrupalthemes:fusion:6.x-1.0:beta3:*:*:*:*:*:*
- cpe:2.3:a:fusiondrupalthemes:fusion:6.x-1.0:beta4:*:*:*:*:*:*
- cpe:2.3:a:fusiondrupalthemes:fusion:6.x-1.0:dev:*:*:*:*:*:*
- cpe:2.3:a:fusiondrupalthemes:fusion:6.x-1.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:fusiondrupalthemes:fusion:6.x-1.1:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
7News mentions
0No linked articles in our index yet.