1 results (0.001 seconds)
CVSS: 5.4EPSS: 0%CPEs: 5EXPL: 0
CVSS: 5.4EPSS: 0%CPEs: 5EXPL: 0CVE-2009-4514
https://notcve.org/view.php?id=CVE-2009-4514
31 Dec 2009 — Cross-site scripting (XSS) vulnerability in the OpenSocial Shindig-Integrator module 5.x and 6.x before 6.x-2.1, a module for Drupal, allows remote authenticated users, with "create application" privileges, to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en el módulo OpenSocial Shindig-Integrator v5.x y v6.x anteriores a v6.x-2.1, un módulo para Drupal, permite a usuarios autenticados remotamente, con privilegios de "crear apl... • http://drupal.org/node/615584 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •