Unrated severityNVD Advisory· Published Jun 20, 2013· Updated Apr 29, 2026
CVE-2013-1393
CVE-2013-1393
Description
Cross-site scripting (XSS) vulnerability in the CurvyCorners module 6.x-1.x and 7.x-1.x for Drupal allows remote authenticated users with the "administer curvycorners" permission to inject arbitrary web script or HTML via unspecified vectors.
Affected products
2cpe:2.3:a:curvycorners:curvycorners:6.x-1.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:curvycorners:curvycorners:6.x-1.0:*:*:*:*:*:*:*
- cpe:2.3:a:curvycorners:curvycorners:7.x-1.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- drupal.org/node/1896718nvdVendor Advisory
- osvdb.org/89571nvd
- packetstormsecurity.com/files/119766/Drupal-CurvyCorners-6.x-7.x-Cross-Site-Scripting.htmlnvd
- packetstormsecurity.com/files/119814/CurvyCorners-Cross-Site-Scripting.htmlnvd
- seclists.org/fulldisclosure/2013/Jan/211nvd
- seclists.org/fulldisclosure/2013/Jan/218nvd
- www.csnc.ch/misc/files/advisories/CVE-2013-1393.txtnvd
- www.securityfocus.com/bid/57526nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/81499nvd
News mentions
0No linked articles in our index yet.