Drupal core - Moderately critical - Multiple Vulnerabilities - SA-CORE-2019-005
|
System information
|
| |
|
|
Affected software |
Drupal |
Description
|
Project: Drupal coreDate: 2019-April-17Security risk: Moderately critical 14∕25 AC:Basic/A:User/CI:Some/II:Some/E:Proof/TD:DefaultVulnerability: Multiple Vulnerabilities Description: This security release fixes third-party dependencies included in or required by Drupal core. CVE-2019-10909: Escape validation messages in the PHP templating engine. From that advisory:Validation messages were not escaped when using the form theme of the PHP templating engine which, when validation messages
More info:
https://www.drupal.org/sa-core-2019-005 |
Standar resources
|
|
Property |
Value |
|
CVE |
CVE-2019-10909 ,CVE-2019-10910 and CVE-2019-10911. |
