Description
A Cross-Site Scripting vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table descriptions, field names, or labels before display.
Remediation
References
Related Vulnerabilities
PHP Other Vulnerability (CVE-2001-1385)
MySQL CVE-2019-2812 Vulnerability (CVE-2019-2812)
WordPress Plugin Gutenberg Template Library & Redux Framework Cross-Site Request Forgery (4.1.23)
WordPress Plugin Namaste! LMS Cross-Site Scripting (2.5.9.3)
Joomla Improper Neutralization of Formula Elements in a CSV File Vulnerability (CVE-2019-12765)