CVE-2010-1584

Vulnerable Component Details
Type Namespace Name Version Package URL
npm @wry context 0.4.4 pkg:npm/%40wry/context@0.4.4?package-id=74ea06cda989def5
Vulnerability Details
ID CVE-2010-1584
Description Cross-site scripting (XSS) vulnerability in the Context module before 6.x-2.0-rc4 for Drupal allows remote authenticated users, with Administer Blocks privileges, to inject arbitrary web script or HTML via a block description.
Ratings
Severity Score Method Vector Source
None None
2.1 CVSSv2 AV:N/AC:H/Au:S/C:N/I:P/A:N
Found By Anchore Grype
References / Advisories