QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2006-4646

Back to search

CVE-2006-4646

Published: Sep 8, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in the Drupal 4.7 Pathauto module before pathauto_node.inc 1.17.2.1 and the Drupal 4.6 Pathauto module before pathauto_node.inc 1.14.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

VendorProductVersions

n/a

n/a

affected
n/a

References

ADV-2006-3480
vdb-entry
x_refsource_VUPEN
http://drupal.org/node/82527
x_refsource_CONFIRM
21779
third-party-advisory
x_refsource_SECUNIA
19876
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now