CVE-2009-1738

2009-05-20T15:30:00
ID CVE-2009-1738
Type cve
Reporter NVD
Modified 2017-08-16T21:30:29

Description

Cross-site scripting (XSS) vulnerability in Feed Block 6.x-1.x before 6.x-1.1, a module for Drupal, allows remote authenticated users with administrator feed permissions to inject arbitrary web script or HTML via unspecified vectors in "aggregator items."