Lucene search
+L

7 matches found

NVD
NVD
added 2022/02/11 4:15 p.m.15 views

CVE-2020-13672

Cross-site Scripting XSS vulnerability in Drupal core's sanitization API fails to properly filter cross-site scripting under certain circumstances. This issue affects: Drupal Core 9.1.x versions prior to 9.1.7; 9.0.x versions prior to 9.0.12; 8.9.x versions prior to 8.9.14; 7.x versions prior to...

6.1CVSS0.00671EPSS
Exploits0References1
OSV
OSV
added 2022/02/11 4:15 p.m.22 views

CVE-2020-13672

Cross-site Scripting XSS vulnerability in Drupal core's sanitization API fails to properly filter cross-site scripting under certain circumstances. This issue affects: Drupal Core 9.1.x versions prior to 9.1.7; 9.0.x versions prior to 9.0.12; 8.9.x versions prior to 8.9.14; 7.x versions prior to...

6.1CVSS5.2AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/02/11 4:15 p.m.39 views

CVE-2020-13672

Cross-site Scripting XSS vulnerability in Drupal core's sanitization API fails to properly filter cross-site scripting under certain circumstances. This issue affects: Drupal Core 9.1.x versions prior to 9.1.7; 9.0.x versions prior to 9.0.12; 8.9.x versions prior to 8.9.14; 7.x versions prior to...

6.1CVSS6.3AI score0.00671EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2022/02/11 3:30 p.m.66 views

CVE-2020-13672

Cross-site Scripting XSS vulnerability in Drupal core's sanitization API fails to properly filter cross-site scripting under certain circumstances. This issue affects: Drupal Core 9.1.x versions prior to 9.1.7; 9.0.x versions prior to 9.0.12; 8.9.x versions prior to 8.9.14; 7.x versions prior to...

6.1CVSS5.8AI score0.00671EPSS
Exploits0
Debian CVE
Debian CVE
added 2022/02/11 3:30 p.m.46 views

CVE-2020-13672

Removed by vendor...

6.1CVSS6.2AI score0.00671EPSS
Exploits0
CVE
CVE
added 2022/02/11 3:30 p.m.161 views

CVE-2020-13672

CVE-2020-13672 is a Drupal core Cross-site Scripting (XSS) issue in the sanitization API. The exposure affects Drupal Core versions: 9.1.x before 9.1.7; 9.0.x before 9.0.12; 8.9.x before 8.9.14; and 7.x before 7.80. The root cause is insufficient filtering of certain scripts during sanitization, ...

6.1CVSS5.6AI score0.00671EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2021/04/22 12:0 a.m.20 views

Drupal 7.x, 8.x, 9.x XSS Vulnerability (SA-CORE-2021-002) - Linux

Drupal is prone to a cross-site scripting XSS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

6.1CVSS6.1AI score0.00671EPSS
Exploits0References1
Rows per page
Query Builder