3 matches found
CVE-2009-4064
Cross-site scripting XSS vulnerability in the Gallery Assist module 6.x before 6.x-1.7 for Drupal allows remote attackers to inject arbitrary web script or HTML via node titles...
CVE-2009-4064
Cross-site scripting XSS vulnerability in the Gallery Assist module 6.x before 6.x-1.7 for Drupal allows remote attackers to inject arbitrary web script or HTML via node titles...
CVE-2009-4064
CVE-2009-4064 describes a cross-site scripting (XSS) vulnerability in the Drupal Gallery Assist module (6.x) prior to version 6.x-1.7. The issue allows remote attackers to inject arbitrary web script or HTML via node titles, enabling potential credential theft or session hijacking in affected ins...