Application: Drupal
Affected Version: versions prior to version 5.x-1.13 and 6.x-1.2.
Vendor’s URL: Drupal Links Package
Bug Type: Cross Site Scripting
Risk Level: Medium

Solution:
Update to version 5.x-1.13 or 6.x-1.2.

http://drupal.org/node/501356
http://drupal.org/node/501360

Content Management, Cross Site Scripting