Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail and PDF versions) module 5.x before 5.x-4.7 and 6.x before 6.x-1.7, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML by modifying a document head, before the Content-Type META element, to contain crafted UTF-8 byte sequences that are treated as UTF-7 by Internet Explorer 6 and 7, a related issue to CVE-2009-1575.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Drupal 'Printer, e-mail and PDF versions' Module HTML注入漏洞
Vulnerability Description
Drupal Print (又称Printer, e-mail and PDF versions) module 5.x-4.7版本之前的5.x版本以及6.x-1.7版本之前的6.x版本中存在跨站脚本攻击漏洞。远程攻击者可以通过修改一个Content-Type META元件之前的文件抬头来包含一个特制的UTF-8字节序列,注入任意web脚本或HTML,且该字节序列会被IE6版本或7版本当作UTF-7字节序列处理。
CVSS Information
N/A
Vulnerability Type
N/A