Cross-site scripting (XSS) vulnerability in the project module (project.module) in Drupal 4.5 and 4.6 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.
References
Link | Resource |
---|---|
http://drupal.org/node/62406 | Patch |
http://www.securityfocus.com/bid/17885 | Patch |
http://secunia.com/advisories/19997 | Patch Vendor Advisory |
http://www.vupen.com/english/advisories/2006/1697 | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/26358 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2006-05-09 03:02
Updated : 2017-07-19 18:31
NVD link : CVE-2006-2260
Mitre link : CVE-2006-2260
JSON object : View
CWE
Products Affected
drupal
- drupal