2 matches found
CVE-2009-4371
Cross-site scripting XSS vulnerability in the Locale module modules/locale/locale.module in Drupal Core 6.14, and possibly other versions including 6.15, allows remote authenticated users with "administer languages" permissions to inject arbitrary web script or HTML via the 1 Language name in...
CVE-2009-4371
CVE-2009-4371 describes a Cross-site scripting (XSS) vulnerability in Drupal Core, specifically the Locale module (modules/locale/locale.module). Affected versions include Drupal Core 6.14 and potentially 6.15. The issue allows remote authenticated users who have the "administer languages" permis...