2 matches found
CVE-2009-4063
Cross-site scripting XSS vulnerability in the Subgroups for Organic Groups OG module 5.x before 5.x-4.0 and 5.x before 5.x-3.4 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified node titles...
CVE-2009-4063
The vulnerability CVE-2009-4063 affects Drupal’s Subgroups for Organic Groups (OG) module for Drupal 5.x. Specifically, versions before 5.x-4.0 and before 5.x-3.4 are vulnerable in OG’s handling of node titles, allowing remote attackers to inject arbitrary script/HTML via node titles (XSS). The a...