1 results (0.004 seconds)
CVSS: 6.8EPSS: 0%CPEs: 7EXPL: 0
CVSS: 6.8EPSS: 0%CPEs: 7EXPL: 0CVE-2006-6646
https://notcve.org/view.php?id=CVE-2006-6646
20 Dec 2006 — Multiple cross-site scripting (XSS) vulnerabilities in Drupal (1) Project Issue Tracking 4.7.x-1.0 and 4.7.x-2.0, and (2) Project 4.6.x-1.0, 4.7.x-1.0, and 4.7.x-2.0 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, which do not use the check_plain function. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Drupal (1)Project Issue Tracking 4.7.x-1.0 y 4.7.x-2.0 y (2) Project 4.6.x-1.0, 4.7.x-1.0 y 4.7.x-2.0 permite a atacantes remotos la inyección d... • http://drupal.org/node/103943 •