Hotjar - Moderately Critical - Cross Site Scripting (XSS) - SA-CONTRIB-2017-015
This module enables you to add the Hotjar tracking system to your website. The module doesn't sufficiently sanitize the Hotjar ID when including tracking code. This vulnerability is mitigated by the fact that an attacker must have a role with the permission "administer hotjar". CVE identifiers...