PT-2022-8499 · Drupal · Drupal Core

Name of the Vulnerable Software and Affected Versions: Drupal Core versions prior to 9.1.7 Drupal Core versions prior to 9.0.12 Drupal Core versions prior to 8.9.14 Drupal Core versions prior to 7.80 Description: A Cross-site Scripting XSS issue exists due to the sanitization API's failure to...

Drupal 7.x, 8.x, 9.x XSS Vulnerability (SA-CORE-2021-002) - Windows

Drupal is prone to a cross-site scripting XSS vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

CVE-2018-8900

The License Manager service of HASP SRM, Sentinel HASP and Sentinel LDK products prior to Sentinel LDK RTE 7.80 allows remote attackers to inject malicious web script in the logs page of Admin Control Center ACC for cross-site scripting XSS vulnerability...