CVE-2009-1344

Name of the Vulnerable Software and Affected Versions Drupal Localization client module versions 5.x before 5.x-1.2 Drupal Localization client module versions 6.x before 6.x-1.7

Description A cross-site scripting (XSS) issue exists in the translation functionality of the Localization client module for Drupal, allowing remote attackers to inject arbitrary web script or HTML via input.

Recommendations For versions 5.x before 5.x-1.2, update to version 5.x-1.2 or later. For versions 6.x before 6.x-1.7, update to version 6.x-1.7 or later.