CVE-2010-2001

Name of the Vulnerable Software and Affected Versions CiviRegister module versions prior to 6.x-1.1 for Drupal

Description The issue allows remote attackers to inject arbitrary web script or HTML via the URI, potentially leading to cross-site scripting (XSS) attacks.

Recommendations For versions prior to 6.x-1.1, update the CiviRegister module to version 6.x-1.1 or later to resolve the issue.