CVE-2014-9362 Information

Description

Cross-site scripting (XSS) vulnerability in the path-based meta tag editing form in the Meta tags quick module 7.x-2.x before 7.x-2.8 for Drupal allows remote authenticated users with the \Edit path based meta tags\ permission to inject arbitrary web script or HTML via vectors related to deleting a Path-based Metatag.

Reference

https://www.drupal.org/node/2295975 https://www.drupal.org/node/2296511