{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-12-10T00:00:00", "descriptions": [{"lang": "en", "value": "Drupal 5.x before 5.13 and 6.x before 6.7 does not delete all related content when an input format is deleted, which prevents the content from being properly filtered and allows remote attackers to conduct cross-site scripting (XSS) attacks via unspecified vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-16T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "FEDORA-2008-11213", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00767.html"}, {"name": "ADV-2008-3414", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2008/3414"}, {"name": "33147", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/33147"}, {"name": "33112", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/33112"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://drupal.org/node/345441"}, {"name": "FEDORA-2008-11196", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00740.html"}, {"name": "drupal-htmltags-xss(47259)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47259"}, {"name": "50662", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/50662"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "[email protected]", "ID": "CVE-2008-6533", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Drupal 5.x before 5.13 and 6.x before 6.7 does not delete all related content when an input format is deleted, which prevents the content from being properly filtered and allows remote attackers to conduct cross-site scripting (XSS) attacks via unspecified vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "FEDORA-2008-11213", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00767.html"}, {"name": "ADV-2008-3414", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/3414"}, {"name": "33147", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/33147"}, {"name": "33112", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/33112"}, {"name": "http://drupal.org/node/345441", "refsource": "CONFIRM", "url": "http://drupal.org/node/345441"}, {"name": "FEDORA-2008-11196", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00740.html"}, {"name": "drupal-htmltags-xss(47259)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47259"}, {"name": "50662", "refsource": "OSVDB", "url": "http://www.osvdb.org/50662"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T11:34:47.069Z"}, "title": "CVE Program Container", "references": [{"name": "FEDORA-2008-11213", "tags": ["vendor-advisory", "x_refsource_FEDORA", "x_transferred"], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00767.html"}, {"name": "ADV-2008-3414", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2008/3414"}, {"name": "33147", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/33147"}, {"name": "33112", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/33112"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://drupal.org/node/345441"}, {"name": "FEDORA-2008-11196", "tags": ["vendor-advisory", "x_refsource_FEDORA", "x_transferred"], "url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00740.html"}, {"name": "drupal-htmltags-xss(47259)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47259"}, {"name": "50662", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/50662"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-6533", "datePublished": "2009-03-26T20:28:00", "dateReserved": "2009-03-26T00:00:00", "dateUpdated": "2024-08-07T11:34:47.069Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:drupal:drupal:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "BDBE79A6-5762-4A7C-8FDA-C11FFFDCFC9B", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:5.1:*:*:*:*:*:*:*", "matchCriteriaId": "A5BCAB7B-DF79-4DB8-A5C4-731F251A02A2", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:5.2:*:*:*:*:*:*:*", "matchCriteriaId": "E5AEAB73-F7A9-4C62-BCB6-1028DAF149DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:5.3:*:*:*:*:*:*:*", "matchCriteriaId": "FF34F79B-6B1B-45CA-82BA-24D4254B26DF", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:5.4:*:*:*:*:*:*:*", "matchCriteriaId": "1C4C5857-3690-4D74-B135-B6AB7E766FB7", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:5.5:*:*:*:*:*:*:*", "matchCriteriaId": "1EC12E03-C4B0-4B2F-B70B-0EB19C450AB2", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:5.6:*:*:*:*:*:*:*", "matchCriteriaId": "FD50E551-7609-45EF-B2C6-3873D9CF8DB6", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:5.7:*:*:*:*:*:*:*", "matchCriteriaId": "327712EE-8E9B-4A62-94A8-504C9CD2DE97", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:5.8:*:*:*:*:*:*:*", "matchCriteriaId": "0C4FC56B-0289-411C-88BF-144D7338D456", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:5.9:*:*:*:*:*:*:*", "matchCriteriaId": "ED3ECEA7-E6D3-43E8-A281-56C7F95A0B7F", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:5.10:*:*:*:*:*:*:*", "matchCriteriaId": "28BE4DF7-6884-49BA-99D0-FCAE6DB75242", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:5.11:*:*:*:*:*:*:*", "matchCriteriaId": "DE7287CD-A5FB-4428-8656-F466A8E47463", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:5.12:*:*:*:*:*:*:*", "matchCriteriaId": "E2860C3D-CB93-4355-882E-BF8B7A23CB4C", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:6.0:*:*:*:*:*:*:*", "matchCriteriaId": "FFE07AAD-9207-4C5F-A108-7F7753E4F48C", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:6.1:*:*:*:*:*:*:*", "matchCriteriaId": "52D8F291-CBEB-4EAA-9388-F63066A2DFA0", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:6.2:*:*:*:*:*:*:*", "matchCriteriaId": "B0BD5AEC-F20E-4E53-AF3F-2C60BA2D2171", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:6.3:*:*:*:*:*:*:*", "matchCriteriaId": "A5D76BC5-0409-4D78-8064-A78B923E9167", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:6.4:*:*:*:*:*:*:*", "matchCriteriaId": "BB73B2E1-2554-4CA2-9C82-B694509CE43A", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:6.5:*:*:*:*:*:*:*", "matchCriteriaId": "3A7827ED-D8AF-42B3-B514-39A04EB0879A", "vulnerable": true}, {"criteria": "cpe:2.3:a:drupal:drupal:6.6:*:*:*:*:*:*:*", "matchCriteriaId": "F491DE31-8DBB-4F4E-8798-F82DC855D08F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Drupal 5.x before 5.13 and 6.x before 6.7 does not delete all related content when an input format is deleted, which prevents the content from being properly filtered and allows remote attackers to conduct cross-site scripting (XSS) attacks via unspecified vectors."}, {"lang": "es", "value": "Drupal v5.x anterior a v5.13 y v6.x anterior a v6.7 no borra el contenido relacionado cuando un formato de entrada es eliminado, lo que evita que se filtre adecuadamente y permita a atacantes remotos llevar a cabo ataques de ejecuci\u00f3n de secuencias de comandos en sitios cruzados (XSS) a trav\u00e9s de vectores no especificados."}], "id": "CVE-2008-6533", "lastModified": "2024-11-21T00:56:46.740", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "[email protected]", "type": "Primary", "userInteractionRequired": true}]}, "published": "2009-03-26T21:00:00.407", "references": [{"source": "[email protected]", "tags": ["Patch", "Vendor Advisory"], "url": "http://drupal.org/node/345441"}, {"source": "[email protected]", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/33112"}, {"source": "[email protected]", "url": "http://secunia.com/advisories/33147"}, {"source": "[email protected]", "url": "http://www.osvdb.org/50662"}, {"source": "[email protected]", "url": "http://www.vupen.com/english/advisories/2008/3414"}, {"source": "[email protected]", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47259"}, {"source": "[email protected]", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00740.html"}, {"source": "[email protected]", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00767.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://drupal.org/node/345441"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/33112"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/33147"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/50662"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2008/3414"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47259"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00740.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.redhat.com/archives/fedora-package-announce/2008-December/msg00767.html"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "[email protected]", "type": "Primary"}]}

{}