CVE-2005-0682

2005-03-0705:00:00

mitre

www.cve.org

5.7 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.9%

JSON

Cross-site scripting (XSS) vulnerability in common.inc in Drupal before 4.5.2 allows remote attackers to inject arbitrary web script or HTML via certain inputs.

References

drupal.org/drupal-4.5.2

drupal.org/files/drupal-4.5-xss-fix.patch

secunia.com/advisories/14515