Security Advisory

CVE-2006-6646

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-12-20 02:00:00

Last updated 2024-08-07 20:33:59

Assigner mitre

State PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in Drupal (1) Project Issue Tracking 4.7.x-1.0 and 4.7.x-2.0, and (2) Project 4.6.x-1.0, 4.7.x-1.0, and 4.7.x-2.0 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, which do not use the check_plain function.

← Browse all CVEs View on cve.org ↗