CVE-2008-1133

Опубликовано: 04 мар. 2008

Источник: debian

Описание

The Drupal.checkPlain function in Drupal 6.0 only escapes the first instance of a character in ECMAScript, which allows remote attackers to conduct cross-site scripting (XSS) attacks.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
drupal5	not-affected			package

Связанные уязвимости

CVE-2008-1133

ubuntu

почти 18 лет назад

The Drupal.checkPlain function in Drupal 6.0 only escapes the first instance of a character in ECMAScript, which allows remote attackers to conduct cross-site scripting (XSS) attacks.

CVE-2008-1133

nvd

почти 18 лет назад

The Drupal.checkPlain function in Drupal 6.0 only escapes the first instance of a character in ECMAScript, which allows remote attackers to conduct cross-site scripting (XSS) attacks.

GHSA-jmjm-jmgj-gh38

github

почти 4 года назад

The Drupal.checkPlain function in Drupal 6.0 only escapes the first instance of a character in ECMAScript, which allows remote attackers to conduct cross-site scripting (XSS) attacks.