CVE-2009-3479

Metadata

CVE-2009-3479
4.3
drupal.org, drupal.org, drupal.org, securityfocus.com
2009-09-30
2017-06-06 20:21

Description

Cross-site scripting (XSS) vulnerability in Bibliography (Biblio) 5.x before 5.x-1.17 and 6.x before 6.x-1.6, a module for Drupal, allows remote attackers, with "create content displayed by the Bibliography module" permissions, to inject arbitrary web script or HTML via a title.

Related Vulnerabilities