CVE-2008-4530

Name: CVE-2008-4530
Creator: NVD / NIST
Published: 2008-10-09T18:14:15.297+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 0.84%

Last modified Jun 16, 2026

CVE-2008-4530 is a vulnerability of currently unknown severity. Cross-site scripting (XSS) vulnerability in Brilliant Gallery 5.x before 5.x-4.2, a module for Drupal, allows remote authenticated users with permissions to inject arbitrary web script or HTML via unspecified vectors related to posting of answers.. EPSS estimates a 0.84% chance of exploitation in the next 30 days.

Description

Cross-site scripting (XSS) vulnerability in Brilliant Gallery 5.x before 5.x-4.2, a module for Drupal, allows remote authenticated users with permissions to inject arbitrary web script or HTML via unspecified vectors related to posting of answers.

Metrics

EPSS Probability

0.84%

53.2th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-79

Affected Software

Vendor	Product	Versions
Drupal	Brilliant Gallery	<= 5.x-4.1
Drupal	Brilliant Gallery	5.x-1.0
Drupal	Brilliant Gallery	5.x-1.1
Drupal	Brilliant Gallery	5.x-1.2
Drupal	Brilliant Gallery	5.x-2.1
Drupal	Brilliant Gallery	5.x-2.2
Drupal	Brilliant Gallery	5.x-2.3
Drupal	Brilliant Gallery	5.x-2.4
Drupal	Brilliant Gallery	5.x-2.5
Drupal	Brilliant Gallery	5.x-2.6
Drupal	Brilliant Gallery	5.x-2.7
Drupal	Brilliant Gallery	5.x-2.8
Drupal	Brilliant Gallery	5.x-2.9
Drupal	Brilliant Gallery	5.x-2.10
Drupal	Brilliant Gallery	5.x-2.11
Drupal	Brilliant Gallery	5.x-2.12
Drupal	Brilliant Gallery	5.x-2.13
Drupal	Brilliant Gallery	5.x-2.14
Drupal	Brilliant Gallery	5.x-2.15
Drupal	Brilliant Gallery	5.x-2.16
Drupal	Brilliant Gallery	5.x-2.17
Drupal	Brilliant Gallery	5.x-3.0
Drupal	Brilliant Gallery	5.x-3.1
Drupal	Brilliant Gallery	5.x-3.2
Drupal	Brilliant Gallery	5.x-3.3
Drupal	Brilliant Gallery	5.x-4.0

References

http://drupal.org/node/315919Patch, Vendor Advisory
http://secunia.com/advisories/32106Vendor Advisory
http://www.securityfocus.com/bid/31554
https://exchange.xforce.ibmcloud.com/vulnerabilities/45636
http://drupal.org/node/315919Patch, Vendor Advisory
http://secunia.com/advisories/32106Vendor Advisory
http://www.securityfocus.com/bid/31554
https://exchange.xforce.ibmcloud.com/vulnerabilities/45636

Timeline

Published: Oct 9, 2008
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2008-4530?

How severe is CVE-2008-4530?

Severity scoring for CVE-2008-4530 is pending analysis. The EPSS model estimates a 0.84% probability of exploitation in the next 30 days.

How do I fix CVE-2008-4530?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2008-4530?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST