Multiple cross-site scripting (XSS) vulnerabilities in the Database Administration (dba) module 4.6.x-*, and prior to 4.7.x-1.2 in the 4.7.x-1.* series, for Drupal allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors relating to (1) direct display of data from the database and (2) other portions of the user interface.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
drupal database administration module 4.6 |
||
drupal database administration module 4.7 |