2 matches found
CVE-2008-4530
CVE-2008-4530 affects the Drupal module Brilliant Gallery (5.x) prior to 5.x-4.2. The issue is an XSS vulnerability where remote authenticated users with permissions can inject arbitrary web script or HTML via unspecified vectors related to posting of answers. Impact is user-level persistence/vis...
CVE-2008-4531
CVE-2008-4531 covers a SQL injection in Brilliant Gallery 5.x (Drupal module) before 5.x-4.2, enabling an attacker to inject arbitrary SQL via unspecified vectors. The vulnerability relates to the broader issue described in CVE-2008-4338, which specifies the brilliant_gallery_checklist_save funct...