Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Moderate

Drupal core - Moderately critical - Cross Site Scripting - SA-CORE-2019-004

Disclosure Date: March 26, 2019 (last updated October 06, 2023)
In Drupal 7 versions prior to 7.65; Drupal 8.6 versions prior to 8.6.13;Drupal 8.5 versions prior to 8.5.14. Under certain circumstances the File module/subsystem allows a malicious user to upload a file that can trigger a cross-site scripting (XSS) vulnerability.
0
1