CVE-2008-1133

EPSS 0.43% · P63 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-1133

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Drupal.checkPlain function in Drupal 6.0 only escapes the first instance of a character in ECMAScript, which allows remote attackers to conduct cross-site scripting (XSS) attacks.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Drupal 跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Drupal是Drupal社区的一套使用PHP语言开发的开源内容管理系统。 Drupal 6.0中存在跨站脚本漏洞。该漏洞源于Drupal.checkPlain函数仅仅会逸出ECMAScript中的一个字符的首个请求，远程攻击者可以执行跨站脚本攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-1133

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-1133

Please Login to view more intelligence information

http://drupal.org/node/227608x_refsource_CONFIRM
http://secunia.com/advisories/29118third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/28026vdb-entryx_refsource_BID
https://nvd.nist.gov/vuln/detail/CVE-2008-1133

Same Patch Batch · n/a · 2008-03-04 · 24 CVEs total

CVE-2007-6702		GoAhead Software FS4104-AW Device 信息泄露漏洞
CVE-2008-1132		Net Activity Viewer 'src/mainwindow.c' 权限许可和访问控制漏洞
CVE-2008-1131		Drupal 跨站脚本攻击漏洞
CVE-2008-1130		IBM WebSphere MQ 和 Fix Pack 未明安全绕过漏洞
CVE-2008-1129		XRMS CRM 'admin/users/self.php' 跨站脚本攻击漏洞
CVE-2008-0931		Debian GNU/Linux平台上Xwine'w_export.c'本地任意指令执行漏洞
CVE-2008-0930		Debian GNU/Linux平台 XWine 'w_editeur.c'不安全临时文件创建漏洞
CVE-2008-1079		Beehive Software SendFile.NET outboxWriteUnsent函数设计错误漏洞
CVE-2008-1136		SynCE vdccm守护程序远程命令注入漏洞
CVE-2008-1135		Omegasoft INterneSErvicesLosungen 信息泄露漏洞
CVE-2008-1134		Omegasoft INterneSErvicesLosungen 授权问题漏洞
CVE-2007-6703		SynCE Vdccm 未明漏洞
CVE-2008-1111		Lighttpd 'mod_cgi'敏感信息泄露漏洞
CVE-2008-1141		DESlock+ DLMFENC.sys 资源管理错误漏洞
CVE-2008-1140		DESlock+ 权限许可和访问控制漏洞
CVE-2008-1139		DESlock+ 权限许可漏洞
CVE-2008-1138		DESlock+ DLMFENC.sys 缓冲区溢出漏洞
CVE-2008-1137		Mambo and Joomla! Gary's Garys Cookbook 组件 'index.php' SQL注入漏洞
CVE-2008-1149		phpMyAdmin '$_REQUEST' SQL注入漏洞
CVE-2008-1148		OpenBSD PRNG DNS Cache中毒和可预测IP ID缺陷

Showing top 20 of 24 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2008-1133

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2008-1133

I. Basic Information for CVE-2008-1133

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-1133

III. Intelligence Information for CVE-2008-1133

Same Patch Batch · n/a · 2008-03-04 · 24 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2008-1133

Leave a comment