Views Send - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2016-061
The Views Send module enables you to send mail to multiple users from a View. The module doesn't sufficiently filter potential user-supplied data when previewing the e-mail which can lead to a Cross Site Scripting XSS vulnerability. This vulnerability is mitigated by the fact that an attacker mus...