CVE-2010-3094
N/A
N/A
Summary
Multiple cross-site scripting (XSS) vulnerabilities in Drupal 6.x before 6.18 allow remote authenticated users with certain privileges to inject arbitrary web script or HTML via (1) an action description, (2) an action message, (3) a node, or (4) a taxonomy term, related to the actions feature and the trigger module.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.debian.org/security/2010/dsa-2113
- http://marc.info/?l=oss-security&m=128440896914512&w=2
- http://drupal.org/node/880476
- http://marc.info/?l=oss-security&m=128418560705305&w=2
- http://www.securityfocus.com/bid/42391
References
- http://www.debian.org/security/2010/dsa-2113
- http://marc.info/?l=oss-security&m=128440896914512&w=2
- http://drupal.org/node/880476
- http://marc.info/?l=oss-security&m=128418560705305&w=2
- http://www.securityfocus.com/bid/42391
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.