Description
Cross-site scripting (XSS) vulnerability in Bibliography (Biblio) 5.x before 5.x-1.17 and 6.x before 6.x-1.6, a module for Drupal, allows remote attackers, with "create content displayed by the Bibliography module" permissions, to inject arbitrary web script or HTML via a title.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Statistics Cross-Site Scripting (12.0.8.1)
Elgg URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-11016)
PHP Other Vulnerability (CVE-2007-1401)
MySQL Other Vulnerability (CVE-2007-6303)
WordPress Plugin Magic Fields 2 Unspecified Vulnerability (2.3.2.2)