Cross-Site Scripting Vulnerability in Shindig-Integrator for Drupal
CVE-2008-4596

Currently unrated

Key Information:

Vendor
Drupal
Status
Shindig-integrator
Vendor
CVE Published:
17 October 2008

Summary

The Shindig-Integrator module for Drupal version 5.x contains a cross-site scripting (XSS) vulnerability that allows remote authenticated users to inject arbitrary web scripts or HTML. This vulnerability can be exploited through unspecified vectors in the generated pages of the application, potentially compromising user interactions and data integrity.

References

http://secunia.com/advisories/32285
third-party-advisoryx_refsource_SECUNIA
https://exchange.xforce.ibmcloud.com/vulnerabilities/45925
vdb-entryx_refsource_XF
http://drupal.org/node/321758
x_refsource_CONFIRM

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.