Drupal Tasklist Module Script Insertion and SQLi
March 27th, 2009
Application: Drupal
Affected Version: version 5.x-1.3 and other versions.
Vendor’s URL: Drupal Tasklist Module
Bug Type: Cross Site Scripting and SQL Injection
Risk Level: Medium
Solution:
Update to version version 5.x-1.3.