CVE-2006-4947

Publication date

2006-09-23 01:00:00

Family

mitre

State

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in the Drupal 4.7 Search Keywords module before 1.15 2006/09/15 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "lack of validation on output."