Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-1131)

Description

Cross-site scripting (XSS) vulnerability in Drupal 6.0 allows remote authenticated users to inject arbitrary web script or HTML via titles in content edit forms.

Remediation

References

CVE-2008-1131

Related Vulnerabilities

WordPress Plugin Fancy Slideshows Security Bypass (2.4)

OpenSSL Improper Authentication Vulnerability (CVE-2009-1390)

TYPO3 Improper Authentication Vulnerability (CVE-2022-23501)

WordPress 4.1.x Multiple Vulnerabilities (4.1 - 4.1.28)

MediaWiki Other Vulnerability (CVE-2007-1054)

Severity

Low

Classification

CVE-2008-1131 CWE-707

Description

Remediation

References

Related Vulnerabilities

Severity

Classification

Tags

Take action and discover your vulnerabilities