FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

drupal -- XSS vulnerability

Affected packages
		drupal	<	4.6.9

Details

VuXML ID	c905298c-2274-11db-896e-000ae42e9b93
Discovery	2006-08-02
Entry	2006-08-02
Modified	2006-08-08

The Drupal project reports:

A malicious user can execute a cross site scripting attack by enticing someone to visit a Drupal site via a specially crafted link.

[source]

References

URL	http://drupal.org/files/sa-2006-011/advisory.txt

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.