Vulnerabilities > Alexander Hass

DATE CVE VULNERABILITY TITLE RISK
2009-12-28 CVE-2009-4429 Cross-Site Scripting vulnerability in Alexander Hass Sections Module
Cross-site scripting (XSS) vulnerability in the Sections module 5.x before 5.x-1.3 and 6.x before 6.x-1.3 for Drupal allows remote authenticated users with "administer sections" privileges to inject arbitrary web script or HTML via a section name (aka the Name field).
3.5