CVE-2008-1133
CVE-2008-1133 affects Drupal 6.0 where the Drupal.checkPlain function escapes only the first instance of a character in ECMAScript, enabling remote XSS attacks. The vulnerability is described across multiple sources as allowing XSS via user-supplied content that is not fully escaped. The provided...