Unrated severityNVD Advisory· Published Aug 31, 2015· Updated Jun 17, 2026
CVE-2015-6753
CVE-2015-6753
Description
Multiple cross-site scripting (XSS) vulnerabilities in the Quick Edit module 7.x-1.x before 7.x-1.2 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or HTML via an (1) entity title, related to in-place editing, or a (2) node title.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:quick_edit_project:quick_edit:7.x-1.0:*:*:*:*:drupal:*:*+ 1 more
- cpe:2.3:a:quick_edit_project:quick_edit:7.x-1.0:*:*:*:*:drupal:*:*
- cpe:2.3:a:quick_edit_project:quick_edit:7.x-1.1:*:*:*:*:drupal:*:*
- Range: <7.x-1.2
Patches
Vulnerability mechanics
References
2- www.drupal.org/node/2546066nvdPatch
- www.drupal.org/node/2546164nvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.