6.2 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
66.0%
Cross-site scripting (XSS) vulnerability in the Gallery Assist module 6.x before 6.x-1.7 for Drupal allows remote attackers to inject arbitrary web script or HTML via node titles.
osvdb.org/60270
secunia.com/advisories/37425
www.securityfocus.com/bid/37061
drupal.org/node/636488
drupal.org/node/636660
exchange.xforce.ibmcloud.com/vulnerabilities/54347