6 matches found
EUVD-2009-4036
Malware in sbrugna...
CVE-2009-4065
Cross-site scripting XSS vulnerability in the settings page in the Strongarm module 6.x before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via the value field when viewing overridden variables...
Cross site scripting
Cross-site scripting XSS vulnerability in the settings page in the Strongarm module 6.x before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via the value field when viewing overridden variables...
CVE-2009-4065
Cross-site scripting XSS vulnerability in the settings page in the Strongarm module 6.x before 6.x-1.1 for Drupal allows remote attackers to inject arbitrary web script or HTML via the value field when viewing overridden variables...
CVE-2009-4065
The CVE-2009-4065 entry describes an XSS vulnerability in the Drupal Strongarm module (6.x) settings page, exploitable via the value field when viewing overridden variables. Affected product/component: Drupal module Strongarm 6.x prior to 6.x-1.1. Root cause: improper sanitization in the settings...
SA-CONTRIB-2009-103 - Strongarm - Cross Site Scripting
The Strongarm module enables other modules to enforce variable settings programmatically. It can also be used to override any of these variables, and lets the administrator see which variables have been overridden, along with their current values. When using the settings page to see overridden...