Unrated severityNVD Advisory· Published Jun 27, 2012· Updated Jun 16, 2026
CVE-2012-2715
CVE-2012-2715
Description
Cross-site scripting (XSS) vulnerability in the themes_links function in template.php in the Amadou theme module 6.x-1.x before 6.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via vectors related to class attributes in a list of links.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:jason_moore:amadou:6.x-1.0:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:jason_moore:amadou:6.x-1.0:*:*:*:*:*:*:*
- cpe:2.3:a:jason_moore:amadou:6.x-1.1:*:*:*:*:*:*:*
- cpe:2.3:a:jason_moore:amadou:6.x-1.2:*:*:*:*:*:*:*
- cpe:2.3:a:jason_moore:amadou:6.x-1.x:dev:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
8- drupal.org/node/1608730nvdPatch
- drupal.org/node/1608780nvdPatchVendor Advisory
- www.securityfocus.com/bid/53732nvdPatch
- drupalcode.org/project/amadou.git/commitdiff/071ea83nvdExploitPatch
- secunia.com/advisories/49328nvdVendor Advisory
- www.openwall.com/lists/oss-security/2012/06/14/3nvd
- www.osvdb.org/82433nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/75997nvd
News mentions
0No linked articles in our index yet.