FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

drupal7 -- fix possible CSS

Affected packages
7.0 < drupal7 < 7.80


VuXML ID f70ab05e-be06-11eb-b983-000c294bb613
Discovery 2021-04-21
Entry 2021-06-06

Drupal Security team reports:

Drupal core's sanitization API fails to properly filter cross-site scripting under certain circumstances. Not all sites and users are affected, but configuration changes to prevent the exploit might be impractical and will vary between sites. Therefore, we recommend all sites update to this release as soon as possible.


CVE Name CVE-2020-13672