Unrated severityNVD Advisory· Published Dec 31, 2009· Updated Jun 16, 2026
CVE-2009-4518
CVE-2009-4518
Description
Cross-site scripting (XSS) vulnerability in the Insert Node module 5.x before 5.x-1.2 for Drupal allows remote attackers to inject arbitrary web script or HTML via an inserted node.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:mark_burton:insertnode:5.x-1.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mark_burton:insertnode:5.x-1.1:*:*:*:*:*:*:*
- cpe:2.3:a:mark_burton:insertnode:5.x-1.x:dev:*:*:*:*:*:*
- Range: <5.x-1.2
Patches
Vulnerability mechanics
References
5- drupal.org/node/616546nvdPatch
- drupal.org/node/617400nvdPatchVendor Advisory
- www.securityfocus.com/bid/36861nvdPatch
- secunia.com/advisories/37199nvdVendor Advisory
- www.vupen.com/english/advisories/2009/3086nvdVendor Advisory
News mentions
0No linked articles in our index yet.