← All advisories

Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Jun 16, 2026

CVE-2002-1806

CVE-2002-1806

Description

Cross-site scripting (XSS) vulnerability in Drupal 4.0.0 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Drupal/Drupal2 versions
cpe:2.3:a:drupal:drupal:4.0.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:drupal:drupal:4.0.0:*:*:*:*:*:*:*
- (no CPE)range: =4.0.0

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

archives.neohapsis.com/archives/bugtraq/2002-09/0307.htmlnvdExploitVendor Advisory
www.securityfocus.com/bid/5801nvdExploit
www.iss.net/security_center/static/10173.phpnvd

News mentions

0

No linked articles in our index yet.