Description

Cross-site scripting (XSS) vulnerability in Drupal 6.0 allows remote authenticated users to inject arbitrary web script or HTML via titles in content edit forms.

Remediation

References

CVE-2008-1131

Related Vulnerabilities

WordPress 3.8.x Multiple Vulnerabilities (3.8 - 3.8.12)

WordPress Plugin Cookie Information-Free GDPR Consent Solution Security Bypass (2.0.22)

WordPress Plugin WP Email Template HTML Injection (2.2.10)

WordPress Plugin BuddyBoss Media Cross-Site Scripting (3.2.3)

OpenSSL Access of Resource Using Incompatible Type ('Type Confusion') Vulnerability (CVE-2023-0286)

Severity

Low

Classification

CVE-2008-1131 CWE-707

Tags

Missing Update Known Vulnerabilities