MidnightBSD

Advisories for jrbcs

CVE-2009-4990 MEDIUM

Cross-site scripting (XSS) vulnerability in the Webform report module 5.x and 6.x for Drupal allows remote attackers to inject arbitrary web script or HTML via a submission.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
jrbcs webform_report 5.x-1.x
jrbcs webform_report 6.x-1.x-dev
jrbcs webform_report 6.x-2.0
jrbcs webform_report 5.x-2.4
jrbcs webform_report 5.x-2.5
jrbcs webform_report 6.x-1.9
jrbcs webform_report 5.x-2.0
jrbcs webform_report 5.x-2.6
jrbcs webform_report 6.x-1.11
jrbcs webform_report 6.x-1.10