CVE-2008-6972

CVE-2008-6972 concerns Drupal Content Construction Kit (CCK) 5.x up to 5.x-1.8. The issue is multiple cross-site scripting (XSS) vulnerabilities that allow remote authenticated users with the administrar content permission to inject arbitrary script/HTML via the field label, help text, or allowed...