Back to search
CVE-2011-2714
Published: Jan 14, 2020
Modified: Aug 6, 2024
PUBLISHED
Description
A Cross-Site Scripting vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table descriptions, field names, or labels before display.
| Vendor | Product | Versions |
|---|---|---|
Drupal | Data-module | affected 6.x-1.0-alpha14 |
References
https://www.openwall.com/lists/oss-security/2011/07/26/8
x_refsource_MISC
https://www.drupal.org/node/1056470
x_refsource_MISC
https://seclists.org/fulldisclosure/2011/Feb/219
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now