drupal6-webform
Page content
- Author: James Buren
- Vulnerable: 6.x_3.15-1
- Unaffected: 6.x_3.17-fermus1
A security issue and a vulnerability have been reported in drupal6-webform, which can be exploited by malicious people to manipulate certain data and bypass certain security restrictions.
- Certain unspecified input is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user’s browser session in context of an affected site when the malicious data is being viewed.
- Bug Tracker URL: https://bugs.frugalware.org/ticket/4671
CVEs:
- none