CVE-2009-3916

Node Hierarchy <6.x-1.3 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in the Node Hierarchy module 5.x before 5.x-1.3 and 6.x before 6.x-1.3, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via a child node title.

References (7)

Scores

EPSS 0.0040
EPSS Percentile 60.6%

Classification

CWE
CWE-79
Status published

Affected Products (10)

ronan_dowling/nodehierarchy
ronan_dowling/nodehierarchy
ronan_dowling/nodehierarchy
ronan_dowling/nodehierarchy
ronan_dowling/nodehierarchy
ronan_dowling/nodehierarchy
ronan_dowling/nodehierarchy
ronan_dowling/nodehierarchy
ronan_dowling/nodehierarchy
n/a/n/a

Timeline

Published Nov 09, 2009
Tracked Since Feb 18, 2026