Skip to main content

Drupal Cross-Site Scripting Vulnerability

Release Date: 21 Jan 2022 3707 Views

RISK: Medium Risk

TYPE: Servers - Internet App Servers

TYPE: Internet App Servers

A vulnerability was identified in Drupal. A remote attacker could exploit this vulnerability to trigger cross-site scripting on the targeted system.


Impact

  • Cross-Site Scripting

System / Technologies affected

  • Drupal 7
  • Drupal 9.2
  • Drupal 9.3

Solutions

Before installation of the software, please visit the vendor web-site for more details.

  • Drupal 7: Update to Drupal 7.86
  • Drupal 9.2: update to Drupal 9.2.11
  • Drupal 9.3: update to Drupal 9.3.3

Vulnerability Identifier


Source


Related Link