Unrated severityNVD Advisory· Published Mar 27, 2013· Updated Apr 29, 2026
CVE-2013-1780
CVE-2013-1780
Description
Cross-site scripting (XSS) vulnerability in the Best Responsive Theme 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via vectors related to social icons.
Affected products
1- cpe:2.3:a:devsaran:best_responsive:7.x-1.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- drupal.org/node/1929390nvdPatch
- drupal.org/node/1929484nvdPatchVendor Advisory
- drupalcode.org/project/best_responsive.git/commitdiff/5972126nvd
- osvdb.org/90690nvd
- secunia.com/advisories/52421nvd
- www.openwall.com/lists/oss-security/2013/02/28/3nvd
- www.securityfocus.com/bid/58213nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/82469nvd
News mentions
0No linked articles in our index yet.