Drupal Content Construction Kit Nodereference Module Multiple HTML-injection Vulnerabilities
|
Bugtraq ID:
|
25321
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Aug 14 2007 12:00AM
|
|
Updated:
|
Aug 29 2007 08:02PM
|
|
Credit:
|
Gerhard Killesreiter, Drupal Security Team is credited with the discovery of these vulnerabilities.
|
|
Vulnerable:
|
Drupal Content Construction Kit 5.0-1.5
Drupal Content Construction Kit 4.7.0-1.5
|
|
|
|
Not Vulnerable:
|
Drupal Content Construction Kit 5.0-1.6
Drupal Content Construction Kit 4.7.0-1.6
|
|
