ID CVE-2009-4119Type cveReporter NVDModified 2017-08-16T21:31:27
Description
Cross-site scripting (XSS) vulnerability in Feed Element Mapper module 5.x before 5.x-1.3, 6.x before 6.x-1.3, and 6.x-2.0-alpha before 6.x-2.0-alpha4 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
{"id": "CVE-2009-4119", "bulletinFamily": "NVD", "title": "CVE-2009-4119", "description": "Cross-site scripting (XSS) vulnerability in Feed Element Mapper module 5.x before 5.x-1.3, 6.x before 6.x-1.3, and 6.x-2.0-alpha before 6.x-2.0-alpha4 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.", "published": "2009-11-30T19:30:00", "modified": "2017-08-16T21:31:27", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4119", "reporter": "NVD", "references": ["http://drupal.org/node/636498", "http://www.securityfocus.com/bid/37060", "http://drupal.org/node/636518", "https://exchange.xforce.ibmcloud.com/vulnerabilities/54338", "http://drupal.org/node/636496"], "cvelist": ["CVE-2009-4119"], "type": "cve", "lastseen": "2017-08-17T11:14:33", "history": [{"bulletin": {"assessment": {"href": "", "name": "", "system": ""}, "bulletinFamily": "NVD", "cpe": ["cpe:/a:alex_barth:feed_element_mapper:5.x-1.x-dev", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.x-dev", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0-beta4", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0-beta5", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta11", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta9", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta12", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0-beta3", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0-beta1", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta5", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta1", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta7", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.1", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta2", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta4", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.2", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0-beta7", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0-beta6", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0-beta2", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-alpha1", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta6", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta3", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta10"], "cvelist": ["CVE-2009-4119"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "description": "Cross-site scripting (XSS) vulnerability in Feed Element Mapper module 5.x before 5.x-1.3, 6.x before 6.x-1.3, and 6.x-2.0-alpha before 6.x-2.0-alpha4 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.", "edition": 1, "enchantments": {}, "hash": "fe2271e9bb6936036e21e360756226f0f1653dee4bd2810787f34ee31ef4bedd", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "6e9bdd2021503689a2ad9254c9cdf2b3", "key": "cvss"}, {"hash": "911b7fa72d24353372095b7a8b443437", "key": "references"}, {"hash": "26f17a977e94127bcdd5e62f5b3343db", "key": "title"}, {"hash": "cb577e82e1c19d90d4f11c95e4430bd7", "key": "cvelist"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "563543e3da11e51966cea1ceb1c95642", "key": "description"}, {"hash": "08c98955e688a09d1a054c8ed580386d", "key": "cpe"}, {"hash": "767cc358924d6ecf3dbbeddc633d5565", "key": "href"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "e93d2bd93f10ad8a448e14bc4a48365b", "key": "published"}, {"hash": "2288afdd561c3802033dad01d3734f5a", "key": "modified"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4119", "id": "CVE-2009-4119", "lastseen": "2016-09-03T13:05:21", "modified": "2009-12-01T00:00:00", "objectVersion": "1.2", "published": "2009-11-30T19:30:00", "references": ["http://drupal.org/node/636498", "http://www.securityfocus.com/bid/37060", "http://drupal.org/node/636518", "http://drupal.org/node/636496", "http://xforce.iss.net/xforce/xfdb/54338"], "reporter": "NVD", "scanner": [], "title": "CVE-2009-4119", "type": "cve", "viewCount": 0}, "differentElements": ["references", "modified"], "edition": 1, "lastseen": "2016-09-03T13:05:21"}], "edition": 2, "hashmap": [{"key": "assessment", "hash": "6d3f4796275bb54c21a33b82f399cc6d"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "08c98955e688a09d1a054c8ed580386d"}, {"key": "cvelist", "hash": "cb577e82e1c19d90d4f11c95e4430bd7"}, {"key": "cvss", "hash": "6e9bdd2021503689a2ad9254c9cdf2b3"}, {"key": "description", "hash": "563543e3da11e51966cea1ceb1c95642"}, {"key": "href", "hash": "767cc358924d6ecf3dbbeddc633d5565"}, {"key": "modified", "hash": "b85085d4791d5467e2948a61e9c49638"}, {"key": "published", "hash": "e93d2bd93f10ad8a448e14bc4a48365b"}, {"key": "references", "hash": "8a59bf07fe6fb465d9bc2a1049a763f7"}, {"key": "reporter", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "scanner", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "26f17a977e94127bcdd5e62f5b3343db"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "b5d8a9ec4c3bbdaebf0ccae0d04140d6074ffa1ba72f83ea85f161332fad3c95", "viewCount": 0, "enchantments": {"vulnersScore": 4.3}, "objectVersion": "1.3", "cpe": ["cpe:/a:alex_barth:feed_element_mapper:5.x-1.x-dev", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.x-dev", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0-beta4", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0-beta5", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta11", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta9", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta12", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0-beta3", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0-beta1", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta5", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta1", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta7", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.1", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta2", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta4", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.2", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0-beta7", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0-beta6", "cpe:/a:alex_barth:feed_element_mapper:5.x-1.0-beta2", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-alpha1", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta6", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta3", "cpe:/a:alex_barth:feed_element_mapper:6.x-1.0-beta10"], "assessment": {"href": "", "name": "", "system": ""}, "scanner": []}
{"result": {}}
