CVE-2009-2610

Name of the Vulnerable Software and Affected Versions Links Package versions 5.x before 5.x-1.13 Links Package versions 6.x before 6.x-1.2

Description The issue is related to a cross-site scripting (XSS) vulnerability in the Links Related module. This allows remote authenticated users to inject arbitrary web script or HTML via the title field.

Recommendations For Links Package versions 5.x before 5.x-1.13, update to version 5.x-1.13 or later. For Links Package versions 6.x before 6.x-1.2, update to version 6.x-1.2 or later.