CVE-2009-4990

Name of the Vulnerable Software and Affected Versions Drupal Webform report module versions 5.x through 6.x

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via a submission. This could potentially lead to unauthorized actions on the affected system.

Recommendations For versions 5.x and 6.x, update the Webform report module to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.