CVE-2009-4516

CVE-2009-4516

EPSS 1.0%

Cross-site scripting (XSS) vulnerability in the FAQ Ask module 5.x and 6.x before 6.x-2.0, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://drupal.org/node/617444 http://secunia.com/advisories/37201 http://www.securityfocus.com/bid/36877 http://www.vupen.com/english/advisories/2009/3088