CVE-2009-2610

Links Package <6.x-1.2 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in the Links Related module in the Links Package 5.x before 5.x-1.13 and 6.x before 6.x-1.2, a module for Drupal, allows remote authenticated users to inject arbitrary web script or HTML via the title field.

References (6)

Scores

EPSS 0.0026
EPSS Percentile 49.3%

Classification

CWE
CWE-79
Status published

Affected Products (27)

scott_courtney/links_package
scott_courtney/links_package
scott_courtney/links_package
scott_courtney/links_package
scott_courtney/links_package
scott_courtney/links_package
scott_courtney/links_package
scott_courtney/links_package
scott_courtney/links_package
scott_courtney/links_package
scott_courtney/links_package
scott_courtney/links_package
scott_courtney/links_package
scott_courtney/links_package
scott_courtney/links_package
... and 12 more

Timeline

Published Jul 27, 2009
Tracked Since Feb 18, 2026