PT-2006-3227 · Drupal · Drupal

Dries

Publicado

2006-05-09

Atualizado

2017-07-20

CVE-2006-2260

CVSS v2.0

4.3

Média

Vetor

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Drupal versions 4.5 through 4.6

Description A cross-site scripting (XSS) issue exists in the project module, allowing remote attackers to inject arbitrary web script or HTML. The exact attack vectors are not specified.

Recommendations For versions 4.5 and 4.6, update to a newer version to mitigate the risk, as these versions are affected by the XSS vulnerability in the project module.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2006-2260

Produtos afetados

Drupal

PT-2006-3227 · Drupal · Drupal

CVE-2006-2260

Identificadores relacionados

Produtos afetados

Referências · 7