EUVD-2009-1342

Malware in sbrugna...

EUVD-2008-6139

Malware in sbrugna...

Cross site scripting

Cross-site scripting XSS vulnerability in the Localization client module 5.x before 5.x-1.2 and 6.x before 6.x-1.7, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via input to the translation functionality...

CVE-2009-1344

The CVE-2009-1344 issue affects the Drupal Localization client module. A Cross-site Scripting (XSS) vulnerability exists in the translation functionality, allowing remote attackers to inject arbitrary web script or HTML via input to the translation feature for Drupal modules: Localization client ...

SA-CONTRIB-2009-019 - Localization client - Cross site scripting

The Localization client module allows you to translate the interface of your Drupal site from within each page as you go. When displaying translatable strings and their completed translations, the module does not escape the data. If used to translate the Drupal core interface, this is not a...

CVE-2008-6169

Cross-site request forgery CSRF vulnerability in the Localization client 5.x before 5.x-1.1 and 6.x before 6.x-1.6 and the Localization server 5.x before 5.x-1.0-alpha5 and 6.x before 6.x-alpha2, modules for Drupal, allows remote attackers to perform unauthorized actions as administrators via...

CVE-2008-6169

Technical details (affected product/version, root cause, exploitation) are not provided in the connected documents. Monitor for updates; current sources include the CVE description but lack publishable technical specifics in the given set.