CVE-2006-4120

CVE-2006-4120

EPSS 1.4%

Cross-site scripting (XSS) vulnerability in the Recipe module (recipe.module) before 1.54 for Drupal 4.6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://drupal.org/node/77538 http://drupal.org/node/77753 http://secunia.com/advisories/21381 https://exchange.xforce.ibmcloud.com/vulnerabilities/28490 http://www.securityfocus.com/bid/19422 http://www.vupen.com/english/advisories/2006/3202