1
Candidate: CVE-2010-3094
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3094
6
Multiple cross-site scripting (XSS) vulnerabilities in Drupal 6.x before
7
6.18 allow remote authenticated users with certain privileges to inject
8
arbitrary web script or HTML via (1) an action description, (2) an action
9
message, (3) a node, or (4) a taxonomy term, related to the actions feature
10
and the trigger module.
19
debdiff: https://bugs.launchpad.net/ubuntu/karmic/+source/drupal5/+bug/539056
20
upstream_drupal6: released (6.18-1, 6.16-1)
23
jaunty_drupal6: ignored (reached end-of-life)
24
karmic_drupal6: ignored (reached end-of-life)
25
lucid_drupal6: not-affected (6.16-1)
26
maverick_drupal6: not-affected (6.18-1)
27
natty_drupal6: not-affected (6.18-1)
28
devel_drupal6: not-affected (6.18-1)