CVE-2009-4063

2009-11-2402:00:00

mitre

www.cve.org

AI Score

5.8

Confidence

High

EPSS

0.003

Percentile

65.9%

JSON

Cross-site scripting (XSS) vulnerability in the Subgroups for Organic Groups (OG) module 5.x before 5.x-4.0 and 5.x before 5.x-3.4 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified node titles.

References

drupal.org/node/630004

drupal.org/node/636562

osvdb.org/60287

secunia.com/advisories/37438

www.securityfocus.com/bid/37056

exchange.xforce.ibmcloud.com/vulnerabilities/54341