MidnightBSD

Advisories for kevinhankens

CVE-2010-1998 LOW

Cross-site scripting (XSS) vulnerability in the CCK TableField module 6.x before 6.x-1.2 for Drupal allows remote authenticated users, with certain node creation or editing privileges, to inject arbitrary web script or HTML via table headers.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
kevinhankens tablefield 6.x-1.1
kevinhankens tablefield 6.x-1.0