← back
CVE-2010-1530

CVE-2010-1530

EPSS 0.9%
Multiple cross-site scripting (XSS) vulnerabilities in the Internationalization module 6.x before 6.x-1.4 for Drupal allow remote authenticated users, with translate interface or administer blocks privileges, to inject arbitrary web script or HTML via (1) strings used in block translation or (2) the untranslated input.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://drupal.org/node/764906http://drupal.org/node/764998http://osvdb.org/63589http://secunia.com/advisories/39361http://www.securityfocus.com/bid/39304