CVE-2015-7881 Information

Description

The Colorbox module 7.x-2.x before 7.x-2.10 for Drupal allows remote authenticated users with certain permissions to bypass intended access restrictions and \add unexpected content to a Colorbox\ via unspecified vectors possibly related to a link in a comment.

Reference

https://www.drupal.org/node/2578165 https://www.drupal.org/node/2582071