Vulnerabilities > Drupal > Views Bulk Operations > Medium

DATE CVE VULNERABILITY TITLE RISK
2009-02-13 CVE-2009-0575 Cross-Site Scripting vulnerability in Drupal Views Bulk Operations
Cross-site scripting (XSS) vulnerability in the theme_views_bulk_operations_confirmation function in views_bulk_operations.module in Views Bulk Operations 5.x before 5.x-1.3 and 6.x before 6.x-1.4, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to node titles.
network
drupal CWE-79
4.3