Cross-Site Scripting Vulnerability in Brilliant Gallery for Drupal
CVE-2008-4530

Currently unrated

Key Information:

Vendor

Drupal
Status
Brilliant Gallery
Vendor
CVE Published:
9 October 2008

What is CVE-2008-4530?

A Cross-Site Scripting (XSS) vulnerability exists in Brilliant Gallery 5.x prior to version 5.x-4.2. This issue allows remote authenticated users with sufficient permissions to inject arbitrary web script or HTML through unspecified input vectors used when posting answers. This could potentially lead to the execution of malicious scripts in users' browsers, exposing them to further attacks.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/45636
vdb-entryx_refsource_XF
http://secunia.com/advisories/32106
third-party-advisoryx_refsource_SECUNIA
http://drupal.org/node/315919
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2008-4530 : Cross-Site Scripting Vulnerability in Brilliant Gallery for Drupal