Vulnerabilities > CVE-2006-6531 - Unspecified vulnerability in Drupal Help TIP Module

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

drupal

NVD

Published: 2006-12-14

Updated: 2024-11-21

Summary

Cross-site scripting (XSS) vulnerability in the Help Tip module before 4.7.x-1.0 for Drupal allows remote attackers to inject arbitrary web script or HTML, and possibly obtain administrative access, via node titles.

Vulnerable Configurations

Part	Description	Count
Application	Drupal Drupal Help TIP Module *	1

References

http://drupal.org/node/102605
http://drupal.org/node/102605
http://secunia.com/advisories/23295
http://secunia.com/advisories/23295
http://www.vupen.com/english/advisories/2006/4941
http://www.vupen.com/english/advisories/2006/4941
https://exchange.xforce.ibmcloud.com/vulnerabilities/30807
https://exchange.xforce.ibmcloud.com/vulnerabilities/30807