2 matches found
Fedora 29 : drupal7-ds (2019-5258ea8ae2)
https://www.drupal.org/project/ds/releases/7.x-2.16 - https://www.drupal.org/project/ds/releases/7.x-2.15 - Critical - Cross site scripting XSS - SA-CONTRIB-2018-019 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website...
Display Suite - Critical - Cross site scripting (XSS) - SA-CONTRIB-2018-019
Display Suite allows you to take full control over how your content is displayed using a drag and drop interface. The module doesn't sufficiently validate view modes provided dynamically via URLs leading to a reflected cross site scripting XSS attack. This vulnerability is mitigated only by the...