CVE-2012-1658 in Ed Readmore
Summary
Cross-site scripting (XSS) vulnerability in the Read More Link module 6.x-3.x before 6.x-3.1 for Drupal allows remote authenticated users with the access administration pages permission to inject arbitrary web script or HTML via unspecified vectors.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.