CVE-2009-2083

Name of the Vulnerable Software and Affected Versions Taxonomy manager versions 5.x before 5.x-1.2

Description A cross-site scripting (XSS) issue exists in the term data detail page of the Taxonomy manager module for Drupal. This allows remote authenticated users with specific privileges to inject arbitrary web script or HTML via the "Parent and related terms" field.

Recommendations For Taxonomy manager versions 5.x before 5.x-1.2, update to version 5.x-1.2 or later to resolve the issue.