2 matches found
CVE-2006-4947
CVE-2006-4947 is an XSS vulnerability in Drupal 4.7 Search Keywords module prior to version 1.15, identified on 2006/09/15. The issue arises from a lack of validation on output in the module, allowing remote attackers to inject arbitrary web script or HTML via unspecified vectors. The connected s...
CVE-2006-4947
Cross-site scripting XSS vulnerability in the Drupal 4.7 Search Keywords module before 1.15 2006/09/15 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "lack of validation on output."...