Description
Cross-site scripting (XSS) vulnerability in Drupal 8.x before 8.1.10 allows remote attackers to inject arbitrary web script or HTML via vectors involving an HTTP exception.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Job Manager PHP Object Injection (1.29.2)
WordPress Plugin WP Statistics Multiple Cross-Site Scripting Vulnerabilities (2.2.4)
Roundcube Resource Management Errors Vulnerability (CVE-2011-4078)
WordPress Plugin One Click SSL Cross-Site Request Forgery (1.4.6)
MySQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-14641)