CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Drupal: >> Drupal Pathauto Module Security Vulnerabilities

CVE-2006-4646

Cross-site scripting (XSS) vulnerability in the Drupal 4.7 Pathauto module before pathauto_node.inc 1.17.2.1 and the Drupal 4.6 Pathauto module before pathauto_node.inc 1.14.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS Score

6.8

EPSS Score

0.012

Published

2006-09-08

Page 1

Vulnerabilities

Vulnerable Software

Drupal: >> Drupal Pathauto Module Security Vulnerabilities

Products

Pricing

Contact Us