2 matches found
CVE-2009-3652
Cross-site scripting XSS vulnerability in Organic Groups OG 5.x-7.x before 5.x-7.4, 5.x-8.x before 5.x-8.1, and 6.x-1.x before 6.x-1.4, a module for Drupal, allows remote authenticated users, with create or edit group nodes permissions, to inject arbitrary web script or HTML via the User-Agent HT...
CVE-2009-3652
The CVE-2009-3652 entry covers a Cross-site scripting (XSS) vulnerability in Drupal's Organic Groups (OG) module. It affects OG 5.x-7.x before 5.x-7.4, OG 5.x-8.x before 5.x-8.1, and OG 6.x-1.x before 6.x-1.4. The issue allows remote authenticated users (with create or edit group nodes permission...