Description

Cross-site scripting (XSS) vulnerability in the project module (project.module) in Drupal 4.5 and 4.6 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

Remediation

References

CVE-2006-2260

Related Vulnerabilities

XOOPS Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-4851)

Oracle Application Server Other Vulnerability (CVE-2002-1631)

MySQL CVE-2014-4240 Vulnerability (CVE-2014-4240)

WordPress Plugin DeMomentSomTres Subscribe Cross-Site Scripting (201909190900)

MySQL CVE-2017-10167 Vulnerability (CVE-2017-10167)

Severity

Medium

Classification

CVE-2006-2260

Tags

Missing Update Known Vulnerabilities