Cross-site scripting (XSS) vulnerability in the Recipe module (recipe.module) before 1.54 for Drupal 4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References
Link | Resource |
---|---|
http://drupal.org/node/77538 | Patch Vendor Advisory |
http://drupal.org/node/77753 | Patch Vendor Advisory |
http://secunia.com/advisories/21381 | Patch Vendor Advisory |
http://www.securityfocus.com/bid/19422 | Patch |
http://www.vupen.com/english/advisories/2006/3202 | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/28490 |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2006-08-14 23:04
Updated : 2024-02-28 10:42
NVD link : CVE-2006-4120
Mitre link : CVE-2006-4120
CVE.ORG link : CVE-2006-4120
JSON object : View
Products Affected
drupal
- recipe_module
- drupal
CWE