First published: Mon Apr 26 2010(Updated: )
Multiple cross-site scripting (XSS) vulnerabilities in the Internationalization module 6.x before 6.x-1.4 for Drupal allow remote authenticated users, with translate interface or administer blocks privileges, to inject arbitrary web script or HTML via (1) strings used in block translation or (2) the untranslated input.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Reyero I18n | =6.x-1.0 | |
Reyero I18n | =6.x-1.0-beta1 | |
Reyero I18n | =6.x-1.0-beta2 | |
Reyero I18n | =6.x-1.0-beta3 | |
Reyero I18n | =6.x-1.0-beta4 | |
Reyero I18n | =6.x-1.0-beta6 | |
Reyero I18n | =6.x-1.0-dev | |
Reyero I18n | =6.x-1.1 | |
Reyero I18n | =6.x-1.2 | |
Reyero I18n | =6.x-1.3 | |
Drupal Drupal |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.