3 matches found
CVE-2009-3786
Cross-site scripting XSS vulnerability in Organic Groups OG Vocabulary 5.x before 5.x-1.1 and 6.x before 6.x-1.1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via the group title...
CVE-2009-3786
Cross-site scripting XSS vulnerability in Organic Groups OG Vocabulary 5.x before 5.x-1.1 and 6.x before 6.x-1.1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via the group title...
CVE-2009-3786
CVE-2009-3786 affects Drupal’s Organic Groups (OG) Vocabulary module. Vulnerable: OG Vocabulary 5.x before 5.x-1.1 and 6.x before 6.x-1.1. Issue: cross-site scripting via the group title, enabling remote injection of arbitrary web script/HTML. Impact as stated: script execution in user context; n...