Drupal · Drupal · CVE-2006-4947
**Name of the Vulnerable Software and Affected Versions**
Drupal 4.7 Search Keywords module version 1.15 and earlier
**Description**
A cross-site scripting issue exists due to a lack of validation on output, allowing remote attackers to inject arbitrary web script or HTML.
**Recommendations**
For Drupal 4.7 Search Keywords module version 1.15 and earlier, update to version 1.15 or later to resolve the issue.