Cross-Site Scripting Vulnerability in Shindig-Integrator for Drupal
CVE-2008-4596

Currently unrated

Key Information:

Vendor: Drupal
Status: Shindig-integrator
Vendor: CVE Published:; 17 October 2008

What is CVE-2008-4596?

The Shindig-Integrator module for Drupal version 5.x contains a cross-site scripting (XSS) vulnerability that allows remote authenticated users to inject arbitrary web scripts or HTML. This vulnerability can be exploited through unspecified vectors in the generated pages of the application, potentially compromising user interactions and data integrity.

References

http://secunia.com/advisories/32285

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/45925

vdb-entryx_refsource_XF

http://drupal.org/node/321758

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 17, 2008
Vulnerability Reserved
Oct 17, 2008

CVE-2008-4596 Data

JSON