Vulnerability Details CVE-2006-6531
Cross-site scripting (XSS) vulnerability in the Help Tip module before 4.7.x-1.0 for Drupal allows remote attackers to inject arbitrary web script or HTML, and possibly obtain administrative access, via node titles.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 72.9%
CVSS Severity
CVSS v2 Score 6.8
References
- http://drupal.org/node/102605
- http://secunia.com/advisories/23295
- http://www.vupen.com/english/advisories/2006/4941
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30807
- http://drupal.org/node/102605
- http://secunia.com/advisories/23295
- http://www.vupen.com/english/advisories/2006/4941
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30807
Products affected by CVE-2006-6531
-
cpe:2.3:a:drupal:help_tip_module:*