Description
Drupal Core is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. Drupal Core versions 8.8.x ranging from 8.8.0 and up to and including 8.8.9 are vulnerable.
Remediation
Update to Drupal Core version 8.8.10 or latest
References
Related Vulnerabilities
WordPress Plugin ELEX WooCommerce Google Shopping (Google Product Feed) Cross-Site Scripting (1.2.3)
WordPress Plugin SyntaxHighlighter Evolved Cross-Site Scripting (3.1.5)
WordPress Plugin mTouch Quiz Multiple Vulnerabilities (3.1.2)
WordPress Plugin WP Cerber Security, Anti-spam & Malware Scan Security Bypass (9.0)
WordPress Cookie Data PHP Code Injection Vulnerability (1.5 - 1.5.1.3)