Vulnerabilities > CVE-2006-6531 - Cross-Site Scripting vulnerability in Help Tip Module
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
drupal
Summary
Cross-site scripting (XSS) vulnerability in the Help Tip module before 4.7.x-1.0 for Drupal allows remote attackers to inject arbitrary web script or HTML, and possibly obtain administrative access, via node titles. This may lead to administrator access if certain conditions are met.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |