CVE-2009-4042
The CVE-2009-4042 entry describes a cross-site scripting (XSS) vulnerability in the Drupal RootCandy theme, versions 6.x prior to 6.x-1.5. The root cause is insufficient sanitization of the URI, allowing remote attackers to inject arbitrary web script or HTML. Affected software: RootCandy theme 6...