Cross-Site Scripting Vulnerability in EveryBlog for Drupal by EveryBlog
CVE-2008-6135

Currently unrated

Key Information:

Vendor

Drupal
Status
Everyblog
Vendor
CVE Published:
14 February 2009

What is CVE-2008-6135?

The vulnerability in EveryBlog versions 5.x and 6.x enables remote attackers to exploit cross-site scripting (XSS) flaws, allowing them to inject arbitrary web scripts or HTML. This poses a significant risk to users, as malicious scripts may be executed within the context of the user's browser, potentially leading to unauthorized actions or data exposure.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/bid/31656
vdb-entryx_refsource_BID
http://secunia.com/advisories/32194
third-party-advisoryx_refsource_SECUNIA
https://exchange.xforce.ibmcloud.com/vulnerabilities/45757
vdb-entryx_refsource_XF

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.