Bug#366947: CVE-2006-2260: XSS vulnerability in drupal project.module

[Stefan Fritsch]

Package: drupal
Severity: grave
Tags: security

CVE-2006-2260:
Cross-site scripting (XSS) vulnerability in the project module
(project.module) in Drupal 4.5 and 4.6 allows remote attackers to
inject arbitrary web script or HTML via unknown attack vectors.

See http://drupal.org/node/62406 for details

Please mention the CVE in the changelog.


-- 
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]