CVE-2009-3488
CVE-2009-3488 describes a cross-site scripting (XSS) vulnerability in Drupal’s Bibliography (Biblio) module, version 6.x-1.6, where remote authenticated users with content-creation privileges can inject arbitrary scripts or HTML via the Title field. The connected records corroborate a related XSS...