Beta

Report

Drupal 8.0.0-8.4.6,8.5.0-8.5.1 is vulnerable to Unauthenticated Cross Site Scripting (XSS) vulnerability

Unauthenticated
Published
2018-04-17

Unauthenticated Cross Site Scripting (XSS) vulnerability

CVE

https://www.cve.org/CVERecord?id=CVE-2018-9861

CVSS

Score:5.3

Severity:Medium

Version:8.0.0-8.4.6,8.5.0-8.5.1

There is a patch available in v8.4.7,8.5.2 and we strongly recommend you update to this version as soon as possible.