CVE-2014-8078 Information

Description

Cross-site scripting (XSS) vulnerability in the Print (aka Printer e-mail and PDF versions) module 6.x-1.x before 6.x-1.19 7.x-1.x before 7.x-1.3 and 7.x-2.x before 7.x-2.0 for Drupal allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via vectors related to nodes.

Reference

http://secunia.com/advisories/57402 https://drupal.org/node/2231671 https://exchange.xforce.ibmcloud.com/vulnerabilities/92349 https://www.drupal.org/node/2231191 https://www.drupal.org/node/2231197 https://www.drupal.org/node/2231199